Lucene search
MitreCVE-2010-0377HistoryJan 21, 2010 - 10:30 p.m.
CVE-2010-0377
2010-01-2122:30:00
CWE-89
mitre
web.nvd.nist.gov
24
cve-2010-0377
sql injection
php myspace gold edition
remote attackers
arbitrary commands
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
44.3%
SQL injection vulnerability in modules/arcade/index.php in PHP MySpace Gold Edition 8.0 and 8.10 allows remote attackers to execute arbitrary SQL commands via the gid parameter in a play_game action. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
phpmyspacephpmyspaceMatch8.0gold
ORphpmyspacephpmyspaceMatch8.10gold
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpmyspace | phpmyspace | 8.0 | cpe:2.3:a:phpmyspace:phpmyspace:8.0:*:gold:*:*:*:*:* |
| phpmyspace | phpmyspace | 8.10 | cpe:2.3:a:phpmyspace:phpmyspace:8.10:*:gold:*:*:*:*:* |
Related
openvas
openvas
PHPMySpace Gold 'gid' Parameter SQL Injection Vulnerability
2010-01-25 00:00:00
PHPMySpace Gold 'gid' Parameter SQL Injection Vulnerability
2010-01-25 00:00:00
prion
prion
Sql injection
2010-01-21 22:30:00
cvelist
cvelist
CVE-2010-0377
2010-01-21 22:00:00
nvd
nvd
CVE-2010-0377
2010-01-21 22:30:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
44.3%
Related for CVE-2010-0377