NVD

Id
1493  
Name
CVE-2008-1549  
Description
Multiple SQL injection vulnerabilities in Aeries Browser Interface (ABI) 3.8.3.14 in Eagle Software Aries Student Information System allow remote attackers to execute arbitrary SQL commands via the (1) GrdBk parameter to GradebookOptions.asp and the (2) SchlCode variable to loginproc.asp, a different vector than CVE-2008-0942.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-03  
Published
2008-03-31  
Modified Date
2008-09-05  
Seq
2008-1549  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
9648 1493 CVE-2008-1549 3787  View
9649 1493 CVE-2008-1549 20080325 aeries browser interface(ABI) 3.8.3.14 Remote SQL Injection  View
9650 1493 CVE-2008-1549 28436  View
9651 1493 CVE-2008-1549 abi-gradebookoptions-loginproc-sql-injection(41429)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
47586 JVNDB-2008-002896 Eagle Software Aries Student Information System の ABI における SQL インジェクションの脆弱性 Eagle Software Aries Student Information System の Aeries Browser interface (ABI) には、SQL インジェクションの脆弱性が存在します。 CVE-2008-1549 31662 CVE-2008-1549 1493 6.8 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002896.html 2008-03-31 2012-06-26 View