CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-6197

SQL injection vulnerability in index.php in the galerie module for KwsPHP 1.3.456 allows remote attackers to execute arbitrary SQL commands via the id_gal parameter in a gal action.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.0%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/28590
https://exchange.xforce.ibmcloud.com/vulnerabilities/41621
https://www.exploit-db.com/exploits/5350
http://www.securityfocus.com/bid/28590
https://exchange.xforce.ibmcloud.com/vulnerabilities/41621
https://www.exploit-db.com/exploits/5350

Products affected by CVE-2008-6197

Kwsphp » Galerie Module » Version: Any

cpe:2.3:a:kwsphp:galerie_module:*
Kwsphp » Kwsphp » Version: 1.3.456

cpe:2.3:a:kwsphp:kwsphp:1.3.456

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-6197

Products

Pricing

Contact Us