Vulnerability Details CVE-2008-6434
SQL injection vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to execute arbitrary SQL commands via the LinkServID parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://holisticinfosec.org/content/view/67/45/
- http://osvdb.org/45616
- http://secunia.com/advisories/30367
- http://www.securityfocus.com/bid/29346
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49225
- http://holisticinfosec.org/content/view/67/45/
- http://osvdb.org/45616
- http://secunia.com/advisories/30367
- http://www.securityfocus.com/bid/29346
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49225