Vulnerability Details CVE-2008-6332
SQL injection vulnerability in login.php in Simple Customer 1.2 allows remote attackers to execute arbitrary SQL commands via the password parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/49916
- http://secunia.com/advisories/32727
- http://www.securityfocus.com/bid/32339
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46675
- https://www.exploit-db.com/exploits/7146
- http://osvdb.org/49916
- http://secunia.com/advisories/32727
- http://www.securityfocus.com/bid/32339
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46675
- https://www.exploit-db.com/exploits/7146
Products affected by CVE-2008-6332
-
cpe:2.3:a:simplecustomer:simple_customer:1.2