Lucene search
MitreCVE-2008-2556HistoryJun 05, 2008 - 9:32 p.m.
CVE-2008-2556
2008-06-0521:32:00
CWE-89
mitre
web.nvd.nist.gov
26
cve-2008-2556
sql injection
php visit counter 0.4
remote attackers
arbitrary sql commands
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.001
Percentile
43.7%
SQL injection vulnerability in read.php in PHP Visit Counter 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the datespan parameter in a read action.
Affected configurations
Node
hessel_brouwerphp_visit_counterRange≤0.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hessel_brouwer | php_visit_counter | * | cpe:2.3:a:hessel_brouwer:php_visit_counter:*:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
PHP Visit Counter 0.4 - 'datespan' SQL Injection
2008-05-31 00:00:00
cvelist
cvelist
CVE-2008-2556
2008-06-05 21:00:00
prion
prion
Sql injection
2008-06-05 21:32:00
nvd
nvd
CVE-2008-2556
2008-06-05 21:32:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.001
Percentile
43.7%
Related for CVE-2008-2556