NVD

Id
6150  
Name
CVE-2008-6419  
Description
Multiple SQL injection vulnerabilities in Social Site Generator (SSG) 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) sgc_id parameter to display_blog.php, (2) scm_mem_id parameter to social_my_profile_download.php, and the (3) catid parameter to social_forum_subcategories.php.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-03  
Published
2009-03-06  
Modified Date
2009-04-02  
Seq
2008-6419  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
36555 6150 CVE-2008-6419 5701  View
36556 6150 CVE-2008-6419 29452  View
36557 6150 CVE-2008-6419 socialsitegenerator-multiple-sql-injection(42777)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
44467 JVNDB-2009-005474 Social Site Generator における SQL インジェクションの脆弱性 Social Site Generator (SSG) には、SQL インジェクションの脆弱性が存在します。 CVE-2008-6419 36532 CVE-2008-6419 6150 7.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-005474.html 2009-03-06 2012-12-20 View