Lucene search
MitreCVE-2009-3973HistoryNov 18, 2009 - 11:30 p.m.
CVE-2009-3973
2009-11-1823:30:00
CWE-89
mitre
web.nvd.nist.gov
20
sql injection
turnkey arcade script
index.php
remote attackers
arbitrary sql commands
id parameter
browse action
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.001
Percentile
48.7%
SQL injection vulnerability in index.php in Turnkey Arcade Script allows remote attackers to execute arbitrary SQL commands via the id parameter in a browse action, a different vector than CVE-2008-5629.
Affected configurations
Node
turnkeyarcadeturnkey_arcade_script
| Vendor | Product | Version | CPE |
|---|---|---|---|
| turnkeyarcade | turnkey_arcade_script | * | cpe:2.3:a:turnkeyarcade:turnkey_arcade_script:*:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2009-11-18 23:30:00
Sql injection
2008-12-17 17:30:00
nvd
nvd
CVE-2009-3973
2009-11-18 23:30:00
CVE-2008-5629
2008-12-17 17:30:00
cvelist
cvelist
CVE-2009-3973
2009-11-18 23:00:00
CVE-2008-5629
2008-12-17 17:00:00
exploitdb
exploitdb
Turnkey Arcade Script - SQL Injection (1)
2008-11-27 00:00:00
Turnkey Arcade Script - SQL Injection (2)
2009-08-25 00:00:00
cve
cve
CVE-2008-5629
2008-12-17 17:30:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.001
Percentile
48.7%
Related for CVE-2009-3973