CVE-2008-4086

Опубликовано: 15 сент. 2008

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in index.php in Reciprocal Links Manager 1.1 allows remote attackers to execute arbitrary SQL commands via the site parameter in an open action.

Ссылки

http://secunia.com/advisories/31703
http://securityreason.com/securityalert/4253
http://www.securityfocus.com/bid/30960
Exploit
http://www.vupen.com/english/advisories/2008/2470
https://exchange.xforce.ibmcloud.com/vulnerabilities/44801
https://www.exploit-db.com/exploits/6349
http://secunia.com/advisories/31703
http://securityreason.com/securityalert/4253
http://www.securityfocus.com/bid/30960
Exploit
http://www.vupen.com/english/advisories/2008/2470
https://exchange.xforce.ibmcloud.com/vulnerabilities/44801
https://www.exploit-db.com/exploits/6349

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:source_workshop:reciprocal_links_manager:1.1:*:*:*:*:*:*:*

EPSS

Процентиль: 73%

0.00793

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-fq3m-2532-mwjq

github

почти 4 года назад