Lucene search
MitreCVE-2008-6488HistoryMar 18, 2009 - 3:30 p.m.
CVE-2008-6488
2009-03-1815:30:00
CWE-89
mitre
web.nvd.nist.gov
30
cve-2008-6488
sql injection
index.php
softcomplex php image gallery 1.0
remote attackers
arbitrary sql commands
admin field
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
41.9%
SQL injection vulnerability in index.php in SoftComplex PHP Image Gallery 1.0 allows remote attackers to execute arbitrary SQL commands via the Admin field in a login action.
Affected configurations
Node
softcomplexphp_image_galleryMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| softcomplex | php_image_gallery | 1.0 | cpe:2.3:a:softcomplex:php_image_gallery:1.0:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2008-6488
2009-03-18 15:30:00
prion
prion
Sql injection
2009-03-18 15:30:00
cvelist
cvelist
CVE-2008-6488
2009-03-18 15:00:00
exploitdb
exploitdb
SoftComplex PHP Image Gallery 1.0 - Authentication Bypass
2008-11-06 00:00:00
SoftComplex PHP Image Gallery - 'ctg' SQL Injection
2008-11-06 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
41.9%
Related for CVE-2008-6488