CVE-2008-6157

Опубликовано: 17 фев. 2009

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

SepCity Classified Ads stores the admin password in cleartext in data/classifieds.mdb, which allows context-dependent attackers to obtain sensitive information.

Ссылки

http://www.attrition.org/pipermail/vim/2009-February/002146.html
Mailing List
https://exchange.xforce.ibmcloud.com/vulnerabilities/48822
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/7613
Third Party Advisory
VDB Entry
http://www.attrition.org/pipermail/vim/2009-February/002146.html
Mailing List
https://exchange.xforce.ibmcloud.com/vulnerabilities/48822
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/7613
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sepcity:classified_ads:-:*:*:*:*:*:*:*

EPSS

Процентиль: 84%

0.02074

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-312

Связанные уязвимости

GHSA-2ppj-9hhv-grqq