Vulnerability Details CVE-2008-6077
SQL injection vulnerability in loudblog/ajax.php in LoudBlog 0.8.0a and earlier allows remote authenticated users to execute arbitrary SQL commands via the colpick parameter in a singleread action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.4%
CVSS Severity
CVSS v2 Score 6.5
References
- http://secunia.com/advisories/32378
- http://www.securityfocus.com/bid/31878
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46045
- https://www.exploit-db.com/exploits/6808
- http://secunia.com/advisories/32378
- http://www.securityfocus.com/bid/31878
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46045
- https://www.exploit-db.com/exploits/6808
Products affected by CVE-2008-6077
-
cpe:2.3:a:loudblog:loudblog:*
-
cpe:2.3:a:loudblog:loudblog:0.5
-
cpe:2.3:a:loudblog:loudblog:0.6
-
cpe:2.3:a:loudblog:loudblog:0.7
-
cpe:2.3:a:loudblog:loudblog:0.8.0