Vulnerability Description
SQL injection vulnerability in BosClassifieds Classified Ads System 3.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bosdev | Bosclassifieds Ads Systems | 3.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/29799Vendor Advisory
- http://www.securityfocus.com/bid/28760Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41799
- https://www.exploit-db.com/exploits/5444
- http://secunia.com/advisories/29799Vendor Advisory
- http://www.securityfocus.com/bid/28760Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41799
- https://www.exploit-db.com/exploits/5444
FAQ
What is CVE-2008-1838?
CVE-2008-1838 is a vulnerability with a CVSS score of 7.5 (HIGH). SQL injection vulnerability in BosClassifieds Classified Ads System 3.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php.
How severe is CVE-2008-1838?
CVE-2008-1838 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-1838?
Check the references section above for vendor advisories and patch information. Affected products include: Bosdev Bosclassifieds Ads Systems.