CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-0795

SQL injection vulnerability in index.php in the MGFi XfaQ (com_xfaq) 1.2 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an answer action.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 0.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/27784
https://exchange.xforce.ibmcloud.com/vulnerabilities/40494
https://www.exploit-db.com/exploits/5109
http://www.securityfocus.com/bid/27784
https://exchange.xforce.ibmcloud.com/vulnerabilities/40494
https://www.exploit-db.com/exploits/5109

Products affected by CVE-2008-0795

Joomla » Joomla » Version: 1.0

cpe:2.3:a:joomla:joomla:1.0
Mambo » Mambo » Version: 4.5

cpe:2.3:a:mambo:mambo:4.5
Mgfi » Xfaq » Version: 1.2

cpe:2.3:a:mgfi:xfaq:1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-0795

Products

Pricing

Contact Us