CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-7030

Multiple SQL injection vulnerabilities in Site2Nite Real Estate Web allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password field to an unspecified component, possibly agentlist.asp. NOTE: this issue was disclosed by an unreliable researcher, so it might be incorrect.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.osvdb.org/51076
http://www.securityfocus.com/archive/1/488070/100/200/threaded
http://www.securityfocus.com/bid/27779
https://exchange.xforce.ibmcloud.com/vulnerabilities/40509
http://www.osvdb.org/51076
http://www.securityfocus.com/archive/1/488070/100/200/threaded
http://www.securityfocus.com/bid/27779
https://exchange.xforce.ibmcloud.com/vulnerabilities/40509

Products affected by CVE-2008-7030

Site2nite » Real Estate Web » Version: Any

cpe:2.3:a:site2nite:real_estate_web:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-7030

Products

Pricing

Contact Us