Lucene search
MitreCVE-2008-3366HistoryJul 30, 2008 - 5:41 p.m.
CVE-2008-3366
2008-07-3017:41:00
CWE-89
mitre
web.nvd.nist.gov
49
cve-2008-3366
sql injection
pligg cms
beta 9.9.0
remote attack
arbitrary sql commands
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.001
Percentile
44.2%
SQL injection vulnerability in story.php in Pligg CMS Beta 9.9.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: this might overlap CVE-2008-1774.
Affected configurations
Node
pliggpligg_cmsMatch9.9.0
ORpliggpligg_cmsMatch9.9.0beta
Related
cvelist
cvelist
CVE-2008-3366
2008-07-30 17:00:00
CVE-2008-1774
2008-04-14 15:00:00
prion
prion
Sql injection
2008-07-30 17:41:00
Sql injection
2008-04-14 16:05:00
nvd
nvd
CVE-2008-3366
2008-07-30 17:41:00
CVE-2008-1774
2008-04-14 16:05:00
exploitdb
exploitdb
Pligg CMS 9.9.0 - 'story.php' SQL Injection
2008-07-28 00:00:00
Pligg CMS 9.9.0 - 'editlink.php' SQL Injection
2008-04-08 00:00:00
cve
cve
CVE-2008-1774
2008-04-14 16:05:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.001
Percentile
44.2%
Related for CVE-2008-3366