CVE-2008-6470

2009-03-1310:00:00

mitre

www.cve.org

6.8 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

79.7%

JSON

Multiple unspecified vulnerabilities in ClanSphere before 2008.2.1 allow remote attackers to obtain sensitive information, and possibly have unknown other impact, via vectors related to “javascript insert” and the (1) mods/messages/getusers.php and (2) mods/abcode/listimg.php files. NOTE: some of these details are obtained from third party information.

References

osvdb.org/48451

secunia.com/advisories/31965

sourceforge.net/project/shownotes.php?release_id=627530

www.clansphere.net/index/news/view/id/289

www.clansphere.net/index/news/view/id/306

www.securityfocus.com/bid/31293

exchange.xforce.ibmcloud.com/vulnerabilities/45269