Lucene search
HistoryDec 16, 2014 - 6:59 p.m.
CVE-2014-8340
cve-2014-8340
sql injection
phptraffica
remote code execution
nvd
8.6 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
53.4%
SQL injection vulnerability in Php/Functions/log_function.php in phpTrafficA 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via a User-Agent HTTP header.
| CPE | Name | Operator | Version |
|---|---|---|---|
| zoneo-soft:phptraffica | zoneo-soft phptraffica | le | 2.2.1 |
Related
packetstorm
packetstorm
phpTrafficA 2.3 SQL Injection
2014-12-09 00:00:00
zdt
zdt
phpTrafficA 2.3 SQL Injection Vulnerability
2014-12-10 00:00:00
prion
prion
Sql injection
2014-12-16 18:59:00
securityvulns
securityvulns
8.6 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
53.4%
Related for CVE-2014-8340