CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-5652

SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyBookMarker 4.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter. NOTE: some of these details are obtained from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/49701
http://secunia.com/advisories/32673
http://securityreason.com/securityalert/4770
http://www.securityfocus.com/bid/32199
http://www.vupen.com/english/advisories/2008/3075
https://exchange.xforce.ibmcloud.com/vulnerabilities/46447
https://www.exploit-db.com/exploits/7045
http://osvdb.org/49701
http://secunia.com/advisories/32673
http://securityreason.com/securityalert/4770
http://www.securityfocus.com/bid/32199
http://www.vupen.com/english/advisories/2008/3075
https://exchange.xforce.ibmcloud.com/vulnerabilities/46447
https://www.exploit-db.com/exploits/7045

Products affected by CVE-2008-5652

Myiosoft » Easybookmarker » Version: 4.0

cpe:2.3:a:myiosoft:easybookmarker:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-5652

Products

Pricing

Contact Us