Lucene search
MitreCVE-2008-5844HistoryJan 05, 2009 - 8:30 p.m.
CVE-2008-5844
2009-01-0520:30:02
CWE-16
mitre
web.nvd.nist.gov
72
php
5.2.7
cve-2008-5844
security
sql injection
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.004
Percentile
72.8%
PHP 5.2.7 contains an incorrect change to the FILTER_UNSAFE_RAW functionality, and unintentionally disables magic_quotes_gpc regardless of the actual magic_quotes_gpc setting, which might make it easier for context-dependent attackers to conduct SQL injection attacks and unspecified other attacks.
Affected configurations
Node
phpphpMatch5.2.7
Related
openvas
openvas
PHP FILTER_UNSAFE_RAW SQL Injection Vulnerability
2009-01-08 00:00:00
FreeBSD Ports: php5
2008-12-10 00:00:00
FreeBSD Ports: php5
2008-12-10 00:00:00
cvelist
cvelist
CVE-2008-5844
2009-01-05 20:00:00
nvd
nvd
CVE-2008-5844
2009-01-05 20:30:02
prion
prion
Sql injection
2009-01-05 20:30:00
nessus
nessus
FreeBSD : php5 -- potential magic_quotes_gpc vulnerability (1f9e2376-c52f-11dd-8cbc-00163e000016)
2008-12-08 00:00:00
PHP < 5.2.8 Multiple Vulnerabilities
2008-12-09 00:00:00
GLSA-201001-03 : PHP: Multiple vulnerabilities
2010-02-25 00:00:00
freebsd
freebsd
php5 -- potential magic_quotes_gpc vulnerability
2008-12-07 00:00:00
seebug
seebug
PHP FILTER_UNSAFE_RAWθΏζ»€ε¨ε€±ζζΌζ΄
2009-01-06 00:00:00
ubuntucve
ubuntucve
CVE-2008-5844
2009-01-05 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2010-01-05 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.004
Percentile
72.8%
Related for CVE-2008-5844