Lucene search
MitreCVE-2008-6623HistoryApr 06, 2009 - 9:30 p.m.
CVE-2008-6623
2009-04-0621:30:00
CWE-89
mitre
web.nvd.nist.gov
30
cve-2008-6623
sql injection
getin.php
webbdomain post card
web postcards
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
34.9%
SQL injection vulnerability in getin.php in WEBBDOMAIN Post Card (aka Web Postcards) 1.02 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.
Affected configurations
Node
webbdomainpost_cardRange≤1.02
ORwebbdomainpost_cardMatch1.01
| Vendor | Product | Version | CPE |
|---|---|---|---|
| webbdomain | post_card | * | cpe:2.3:a:webbdomain:post_card:*:*:*:*:*:*:*:* |
| webbdomain | post_card | 1.01 | cpe:2.3:a:webbdomain:post_card:1.01:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2009-04-06 21:30:00
nvd
nvd
CVE-2008-6623
2009-04-06 21:30:00
exploitdb
exploitdb
WEBBDOMAIN Post Card 1.02 - Authentication Bypass
2008-11-04 00:00:00
cvelist
cvelist
CVE-2008-6623
2009-04-06 21:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
34.9%
Related for CVE-2008-6623