Lucene search
HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-0377
cve-2010-0377
sql injection
php myspace gold edition
remote attackers
arbitrary commands
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
48.9%
SQL injection vulnerability in modules/arcade/index.php in PHP MySpace Gold Edition 8.0 and 8.10 allows remote attackers to execute arbitrary SQL commands via the gid parameter in a play_game action. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
phpmyspacephpmyspaceMatch8.0gold
ORphpmyspacephpmyspaceMatch8.10gold
| CPE | Name | Operator | Version |
|---|---|---|---|
| phpmyspace:phpmyspace | phpmyspace | eq | 8.0 |
| phpmyspace:phpmyspace | phpmyspace | eq | 8.10 |
Related
openvas
openvas
PHPMySpace Gold 'gid' Parameter SQL Injection Vulnerability
2010-01-25 00:00:00
PHPMySpace Gold 'gid' Parameter SQL Injection Vulnerability
2010-01-25 00:00:00
prion
prion
Sql injection
2010-01-21 22:30:00
cvelist
cvelist
CVE-2010-0377
2022-10-03 16:21:12
nvd
nvd
CVE-2010-0377
2010-01-21 22:30:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
48.9%
Related for CVE-2010-0377