Lucene search
MitreCVE-2008-4616HistoryOct 20, 2008 - 6:14 p.m.
CVE-2008-4616
2008-10-2018:14:04
CWE-20
mitre
web.nvd.nist.gov
26
wordpress
spambam
cve-2008-4616
security
bypass restrictions
remote attackers
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.8
Confidence
Low
EPSS
0.016
Percentile
87.8%
The SpamBam plugin for WordPress allows remote attackers to bypass restrictions and add blog comments by using server-supplied values to calculate a shared key.
Affected configurations
Node
the_spannerspambam_plugin
ORwordpressspambam_plugin
| Vendor | Product | Version | CPE |
|---|---|---|---|
| the_spanner | spambam_plugin | * | cpe:2.3:a:the_spanner:spambam_plugin:*:*:*:*:*:*:*:* |
| wordpress | spambam_plugin | * | cpe:2.3:a:wordpress:spambam_plugin:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-4616
2008-10-20 18:00:00
nvd
nvd
CVE-2008-4616
2008-10-20 18:14:04
prion
prion
Design/Logic Flaw
2008-10-20 18:14:00
patchstack
patchstack
WordPress SpamBam Plugin - BYPASS
2008-10-20 00:00:00
wpvulndb
wpvulndb
Spambam <= 2.1 - Authorisation Bypass
2008-01-15 00:00:00
exploitdb
exploitdb
WordPress Plugin SpamBam - Key Calculation Security Bypass
2007-01-15 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.8
Confidence
Low
EPSS
0.016
Percentile
87.8%
Related for CVE-2008-4616