CVE-2008-4332

Sažetak

SQL injection vulnerability in the showjavatopic function in func.php in PHP infoBoard V.7 Plus allows remote attackers to execute arbitrary SQL commands via the idcat parameter to showtopic.php.

Reference

http://secunia.com/advisories/31977
http://www.securityfocus.com/bid/31405
https://exchange.xforce.ibmcloud.com/vulnerabilities/45440
https://www.exploit-db.com/exploits/6566

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

29-09-2017 - 01:32

Objavljeno

30-09-2008 - 17:22