exploitDog

CVE-2008-2190

Опубликовано: 14 мая 2008

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

SQL injection vulnerability in index.php in Online Rent (aka Online Rental Property Script) 4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter. NOTE: it was later reported that 5.0 and earlier are also affected.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:romedchim_international_srl:online_rent_property_script:*:*:*:*:*:*:*:*

Версия до 4.5 (включая)

cpe:2.3:a:romedchim_international_srl:online_rent_property_script:4.2:*:*:*:*:*:*:*

cpe:2.3:a:romedchim_international_srl:online_rent_property_script:4.3:*:*:*:*:*:*:*

cpe:2.3:a:romedchim_international_srl:online_rent_property_script:4.4:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01724

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-g543-55r6-hhw7

github

почти 4 года назад

SQL injection vulnerability in index.php in Online Rent (aka Online Rental Property Script) 4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter. NOTE: it was later reported that 5.0 and earlier are also affected.

EPSS

Процентиль: 82%

0.01724

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-89