Lucene search
PRIOn knowledge basePRION:CVE-2008-0385HistoryFeb 29, 2008 - 7:44 p.m.
Sql injection
2008-02-2919:44:00
PRIOn knowledge base
www.prio-n.com
4
9 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
67.1%
SQL injection vulnerability in server/widgetallocator.php in Urulu 2.1 allows remote attackers to execute arbitrary SQL commands via the connectionId parameter to index.php with (1) statprt/js/request or (2) dyn/js/request in the PATH_INFO.
Related
seebug
seebug
Urulu connectionIdεζ°SQLη²ζ³¨ζΌζ΄
2008-03-02 00:00:00
cvelist
cvelist
CVE-2008-0385
2008-02-29 19:00:00
cve
cve
CVE-2008-0385
2008-02-29 19:44:00
securityvulns
securityvulns
Urulu 2.1 Blind SQL Injection Vulnerability (CVE-2008-0385)
2008-02-29 00:00:00
Urulu 2.1 Blind SQL Injection Vulnerability (CVE-2008-0385)
2008-02-29 00:00:00
9 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
67.1%
Related for PRION:CVE-2008-0385