Lucene search
MitreCVE-2008-0857HistoryFeb 21, 2008 - 12:44 a.m.
CVE-2008-0857
2008-02-2100:44:00
CWE-89
mitre
web.nvd.nist.gov
19
cve
sql injection
woltlab burning board
remote attackers
pmlist page
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.001
Percentile
46.8%
SQL injection vulnerability in index.php in WoltLab Burning Board 3.0.3 PL 1 allows remote attackers to execute arbitrary SQL commands via the sortOrder parameter to the PMList page.
Affected configurations
Node
woltlabburning_boardMatch3.0.3_pl1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| woltlab | burning_board | 3.0.3_pl1 | cpe:2.3:a:woltlab:burning_board:3.0.3_pl1:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2008-02-21 00:44:00
nvd
nvd
CVE-2008-0857
2008-02-21 00:44:00
exploitdb
exploitdb
Woltlab Burning Board 3.0.x - Blind SQL Injection
2008-02-20 00:00:00
cvelist
cvelist
CVE-2008-0857
2008-02-21 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.001
Percentile
46.8%
Related for CVE-2008-0857