{ "id": "CVE-2008-0682", "sourceIdentifier": "cve@mitre.org", "published": "2008-02-12T01:00:00.000", "lastModified": "2017-09-29T01:30:25.160", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", "value": "SQL injection vulnerability in wordspew-rss.php in the Wordspew plugin before 3.72 for Wordpress allows remote attackers to execute arbitrary SQL commands via the id parameter." }, { "lang": "es", "value": "Una vulnerabilidad de inyecci\u00f3n SQL en el archivo wordspew-rss.php en el plugin Wordspew versiones anteriores a 3.72 para Wordpress, permite a los atacantes remotos ejecutar comandos SQL arbitrarios por medio del par\u00e1metro id." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 7.5 }, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-89" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:*:*:*:*:*:*:*:*", "versionEndIncluding": "3.71", "matchCriteriaId": "CD08DF3D-7E32-4B81-BCDF-8159A55C231B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:1.6:*:*:*:*:*:*:*", "matchCriteriaId": "4F806B4D-3107-43D9-B843-8909EE4BDA38" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:1.7:*:*:*:*:*:*:*", "matchCriteriaId": "F04E9C2E-FC4B-4FE9-ADF3-D208E2CC0569" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:1.8:*:*:*:*:*:*:*", "matchCriteriaId": "5D87B34D-B00D-42BD-84DA-5BE13029C9CD" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "8870FF50-567C-4FAD-9646-154B65F943DC" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.1:*:*:*:*:*:*:*", "matchCriteriaId": "D674AFDF-8325-4F54-811B-56ABEB380DC5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "EE9E0EAB-C3FC-4FD3-AF01-90DE52A29E7D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.3:*:*:*:*:*:*:*", "matchCriteriaId": "8B11D067-68DB-4152-97FA-A05812C8EBAB" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.5:*:*:*:*:*:*:*", "matchCriteriaId": "07ACFBC4-0BFD-47DD-8CFE-0855685975E2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.6:*:*:*:*:*:*:*", "matchCriteriaId": "AE13D621-C452-44E1-9F60-877C94B633D6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.7:*:*:*:*:*:*:*", "matchCriteriaId": "2555C237-7E54-47E4-BE8D-FFB7DABBB901" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.8:*:*:*:*:*:*:*", "matchCriteriaId": "98C23360-EC17-45FE-8201-C8FBD6CFADF5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.9:*:*:*:*:*:*:*", "matchCriteriaId": "BC93864E-AE1B-4122-B774-7AC18C8F1FF7" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.31:*:*:*:*:*:*:*", "matchCriteriaId": "0958810F-599F-48D0-985D-8237CF1383A2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.32:*:*:*:*:*:*:*", "matchCriteriaId": "EAC0BDAC-9B31-4363-A9DC-B94E1CAB89EF" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.85:*:*:*:*:*:*:*", "matchCriteriaId": "78B526A3-65B1-4F3E-A1F3-D983D38B3027" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.91:*:*:*:*:*:*:*", "matchCriteriaId": "60822A32-86A5-42D0-AF18-19777DF22EA6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.92:*:*:*:*:*:*:*", "matchCriteriaId": "7C748AE9-335A-4099-A783-8C4589C15C10" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.93:*:*:*:*:*:*:*", "matchCriteriaId": "38491D2E-8F3C-4AF9-938C-8A09FFBED146" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.94:*:*:*:*:*:*:*", "matchCriteriaId": "370177EF-D9B8-47D4-B802-1D2031D5BD19" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:2.95:*:*:*:*:*:*:*", "matchCriteriaId": "EC71EDDA-6C3F-4759-9C2E-AB8846FC34F3" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "028F61A4-6385-4A78-9426-46CC09C0FC84" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.01:*:*:*:*:*:*:*", "matchCriteriaId": "962A6E85-C606-432A-B735-F3B330BC4CF1" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.1:*:*:*:*:*:*:*", "matchCriteriaId": "2F81D1B3-8D25-4296-A2FF-86894622233B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.2:*:*:*:*:*:*:*", "matchCriteriaId": "44EA83AF-7323-4D18-BF7B-0460DAE420FB" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.02:*:*:*:*:*:*:*", "matchCriteriaId": "248D33B1-2651-4331-A8C8-A80B3E1FF3E6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.3:*:*:*:*:*:*:*", "matchCriteriaId": "F5E26B87-A8BF-4432-952A-1D867F7AB2CE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.6:*:*:*:*:*:*:*", "matchCriteriaId": "5DBE390B-A51B-4ED6-ADA8-65825BF8CDF8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.7:*:*:*:*:*:*:*", "matchCriteriaId": "50A1B31E-638B-4EB0-B762-923C0EDE51A7" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.15:*:*:*:*:*:*:*", "matchCriteriaId": "82148B97-88ED-4193-8A1C-79425799B896" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.16:*:*:*:*:*:*:*", "matchCriteriaId": "7688BB29-26C2-4D03-97F0-B42DCE335B17" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.021:*:*:*:*:*:*:*", "matchCriteriaId": "E6124A31-1CB7-4A02-95E0-8CCF3AEA277E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.022:*:*:*:*:*:*:*", "matchCriteriaId": "C80D0958-CDE3-42E0-882C-69D202216F86" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.31:*:*:*:*:*:*:*", "matchCriteriaId": "E6F9A39F-048F-4B5D-9997-9EA53CFC0F96" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.32:*:*:*:*:*:*:*", "matchCriteriaId": "BD73FD43-CCB4-4F93-B6C8-9A923FE5FF31" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.33:*:*:*:*:*:*:*", "matchCriteriaId": "D33CDBC7-1C15-46C5-820A-FA894B559238" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.34:*:*:*:*:*:*:*", "matchCriteriaId": "CF88C4F6-38A8-4D19-B160-1A78563D367C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.51:*:*:*:*:*:*:*", "matchCriteriaId": "BEA61373-6FD8-48C2-9DDD-55A39E4DD9C9" }, { "vulnerable": true, "criteria": "cpe:2.3:a:wordpress:wordspew:3.52:*:*:*:*:*:*:*", "matchCriteriaId": "96B2544B-D7FD-4C88-8409-26B8AF4342E2" } ] } ] } ], "references": [ { "url": "http://pierre.sudarovich.free.fr/index.php/2006/02/28/ajax-shoutbox/", "source": "cve@mitre.org" }, { "url": "http://www.securityfocus.com/bid/27583", "source": "cve@mitre.org" }, { "url": "https://www.exploit-db.com/exploits/5039", "source": "cve@mitre.org" } ] }