Sql injection

2009-07-0719:30:00

PRIOn knowledge base

www.prio-n.com

9.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.0%

JSON

Multiple SQL injection vulnerabilities in ClanSphere before 2009.0.1 allow remote attackers to execute arbitrary SQL commands via unknown parameters to the gbook module and unspecified other components.

CPENameOperatorVersion
clansphereeq2009.0 rc3
clansphereeq2009.0 rc1
clansphereeq2007.4.3
clansphereeq2008.2
clansphereeq2009.0 rc2
clanspherele2009.0
clansphereeq2008.2.1
clansphereeq2008.1
clansphereeq2007.4
clansphereeq2007.4.4

Name	Operator	Version
clansphere	eq	2009.0 rc3
clansphere	eq	2009.0 rc1
clansphere	eq	2007.4.3
clansphere	eq	2008.2
clansphere	eq	2009.0 rc2
clansphere	le	2009.0
clansphere	eq	2008.2.1
clansphere	eq	2008.1
clansphere	eq	2007.4
clansphere	eq	2007.4.4

Rows per page:

1-10 of 131

References

secunia.com/advisories/35694

www.clansphere.net/index/news/view/id/405/

www.securityfocus.com/bid/35576

www.vupen.com/english/advisories/2009/1794