CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-1220

SQL injection vulnerability in the 4nChat 0.91 module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the roomid parameter in an index action to modules.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/28128
https://exchange.xforce.ibmcloud.com/vulnerabilities/41051
http://www.securityfocus.com/bid/28128
https://exchange.xforce.ibmcloud.com/vulnerabilities/41051

Products affected by CVE-2008-1220

Phpnuke » 4nchat » Version: 0.91

cpe:2.3:a:phpnuke:4nchat:0.91

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-1220

Products

Pricing

Contact Us