Vulnerability Details CVE-2008-2460
SQL injection vulnerability in faq.php in vBulletin 3.7.0 Gold allows remote attackers to execute arbitrary SQL commands via the q parameter in a search action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/archive/1/492290/100/0/threaded
- http://www.securityfocus.com/bid/29293
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42541
- http://www.securityfocus.com/archive/1/492290/100/0/threaded
- http://www.securityfocus.com/bid/29293
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42541