Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1982

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-1982
Last Modified 07 Mar 2011 10:08:32
Published 27 Apr 2008 04:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-1982

Summary

SQL injection vulnerability in ss_load.php in the Spreadsheet (wpSS) 0.6 and earlier plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the ss_id parameter.

Vulnerable Systems

Application

  • Wordpress Wpss 0.6


References

CONFIRM - http://timrohrer.com/blog/?p=120

XF - spreadsheet-ssload-sql-injection(41968)

VUPEN - ADV-2008-1344

BID - 28894

MILW0RM - 5486

SECUNIA - 29938


Last Updated: 27 May 2016 10:47:42