Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0363

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0363
Last Modified 05 Sep 2008 05:34:52
Published 18 Jan 2008 05:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0363

Summary

Multiple SQL injection vulnerabilities in Clever Copy 3.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) ID parameter to postcomment.php and the (2) album parameter to gallery.php.

Vulnerable Systems

Application

  • Clever Copy 3.0


References

BUGTRAQ - 20080117 Clever Copy <=3.0 Multiple Remote Vulnerabilities

XF - clevercopy-postcomment-sql-injection(39746)

BID - 27335

SREASON - 3553

SECUNIA - 28560


Last Updated: 27 May 2016 10:46:46