mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
88 lines
2.4 KiB
JSON
88 lines
2.4 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "cve@mitre.org",
|
|
"ID" : "CVE-2008-6656",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "n/a",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Multiple SQL injection vulnerabilities in Open Auto Classifieds 1.4.3b allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to listings.php and (2) the username field to login.php."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "5531",
|
|
"refsource" : "EXPLOIT-DB",
|
|
"url" : "https://www.exploit-db.com/exploits/5531"
|
|
},
|
|
{
|
|
"name" : "http://freshmeat.net/projects/openauto/releases/277061",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "http://freshmeat.net/projects/openauto/releases/277061"
|
|
},
|
|
{
|
|
"name" : "29027",
|
|
"refsource" : "BID",
|
|
"url" : "http://www.securityfocus.com/bid/29027"
|
|
},
|
|
{
|
|
"name" : "50255",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://osvdb.org/50255"
|
|
},
|
|
{
|
|
"name" : "50256",
|
|
"refsource" : "OSVDB",
|
|
"url" : "http://osvdb.org/50256"
|
|
},
|
|
{
|
|
"name" : "openautoclassifieds-listings-sql-injection(42158)",
|
|
"refsource" : "XF",
|
|
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/42158"
|
|
}
|
|
]
|
|
}
|
|
}
|