CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-6651

Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote attackers to inject arbitrary PHP code into oxyhistory.php via the oxymsg parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.023

EPSS Ranking 84.1%

CVSS Severity

CVSS v2 Score 10.0

References

http://www.securityfocus.com/bid/28992
https://exchange.xforce.ibmcloud.com/vulnerabilities/42110
https://www.exploit-db.com/exploits/5524
http://www.securityfocus.com/bid/28992
https://exchange.xforce.ibmcloud.com/vulnerabilities/42110
https://www.exploit-db.com/exploits/5524

Products affected by CVE-2008-6651

Oxyproject » Oxybox » Version: 0.85

cpe:2.3:a:oxyproject:oxybox:0.85

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-6651

Products

Pricing

Contact Us