NVD

Id
2253  
Name
CVE-2008-2334  
Description
Multiple SQL injection vulnerabilities in W1L3D4 Philboard 0.5 allow remote attackers to execute arbitrary SQL commands via the (1) forumid parameter to (a) admin/philboard_admin-forumedit.asp, (b) admin/philboard_admin-forum.asp, and (c) W1L3D4_foruma_yeni_konu_ac.asp; the (2) id parameter to (d) W1L3D4_konuoku.asp and (e) W1L3D4_konuya_mesaj_yaz.asp; and the (3) topic parameter to W1L3D4_konuya_mesaj_yaz.asp, different vectors than CVE-2008-1939, CVE-2007-2641, and CVE-2007-0920. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-03  
Published
2008-05-19  
Modified Date
2008-09-05  
Seq
2008-2334  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
14383 2253 CVE-2008-2334 29229  View
14384 2253 CVE-2008-2334 http://www.securityfocus.com/bid/29229/exploit  View
14385 2253 CVE-2008-2334 philboard-multiple-sql-injection(42452)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
47766 JVNDB-2008-003076 W1L3D4 Philboard における SQL インジェクションの脆弱性 W1L3D4 Philboard には、SQL インジェクションの脆弱性が存在します。 CVE-2008-2334 32447 CVE-2008-2334 2253 7.5 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-003076.html 2008-05-19 2012-06-26 View