Vulnerability Details CVE-2008-6753
SQL injection vulnerability in SilverStripe before 2.2.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to AjaxUniqueTextField.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://silverstripe.org/archive/show/43794
- http://www.openwall.com/lists/oss-security/2009/04/13/2
- http://www.securityfocus.com/bid/34852
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50368
- http://silverstripe.org/archive/show/43794
- http://www.openwall.com/lists/oss-security/2009/04/13/2
- http://www.securityfocus.com/bid/34852
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50368
Products affected by CVE-2008-6753
-
cpe:2.3:a:silverstripe:silverstripe:2.0.0
-
cpe:2.3:a:silverstripe:silverstripe:2.0.1
-
cpe:2.3:a:silverstripe:silverstripe:2.0.2
-
cpe:2.3:a:silverstripe:silverstripe:2.1.0
-
cpe:2.3:a:silverstripe:silverstripe:2.1.1
-
cpe:2.3:a:silverstripe:silverstripe:2.2.0
-
cpe:2.3:a:silverstripe:silverstripe:2.2.1