CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-0301

Multiple SQL injection vulnerabilities in Mapbender 2.4.4 allow remote attackers to execute arbitrary SQL commands via the gaz parameter to mod_gazetteer_edit.php and other unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.017

EPSS Ranking 81.4%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=full-disclosure&m=120523564611595&w=2
http://secunia.com/advisories/29329
http://securityreason.com/securityalert/3728
http://www.redteam-pentesting.de/advisories/rt-sa-2008-002.php
http://www.securityfocus.com/archive/1/489383/100/0/threaded
http://www.securityfocus.com/bid/28193
https://exchange.xforce.ibmcloud.com/vulnerabilities/41139
https://www.exploit-db.com/exploits/5233
http://marc.info/?l=full-disclosure&m=120523564611595&w=2
http://secunia.com/advisories/29329
http://securityreason.com/securityalert/3728
http://www.redteam-pentesting.de/advisories/rt-sa-2008-002.php
http://www.securityfocus.com/archive/1/489383/100/0/threaded
http://www.securityfocus.com/bid/28193
https://exchange.xforce.ibmcloud.com/vulnerabilities/41139
https://www.exploit-db.com/exploits/5233

Products affected by CVE-2008-0301

Mapbender » Mapbender » Version: 2.4

cpe:2.3:a:mapbender:mapbender:2.4
Mapbender » Mapbender » Version: 2.4.1

cpe:2.3:a:mapbender:mapbender:2.4.1
Mapbender » Mapbender » Version: 2.4.2

cpe:2.3:a:mapbender:mapbender:2.4.2
Mapbender » Mapbender » Version: 2.4.3

cpe:2.3:a:mapbender:mapbender:2.4.3
Mapbender » Mapbender » Version: 2.4.4

cpe:2.3:a:mapbender:mapbender:2.4.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-0301

Products

Pricing

Contact Us