Vulnerability Description
SQL injection vulnerability in the login feature in Poll Pro 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) Password and (2) username parameters.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adcomplete | Poll Pro | 2.0 |
Related Weaknesses (CWE)
References
- http://osvdb.org/50576
- http://secunia.com/advisories/33044Vendor Advisory
- http://securityreason.com/securityalert/4741
- http://www.securityfocus.com/bid/32707
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47169
- https://www.exploit-db.com/exploits/7391
- http://osvdb.org/50576
- http://secunia.com/advisories/33044Vendor Advisory
- http://securityreason.com/securityalert/4741
- http://www.securityfocus.com/bid/32707
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47169
- https://www.exploit-db.com/exploits/7391
FAQ
What is CVE-2008-5573?
CVE-2008-5573 is a vulnerability with a CVSS score of 7.5 (HIGH). SQL injection vulnerability in the login feature in Poll Pro 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) Password and (2) username parameters.
How severe is CVE-2008-5573?
CVE-2008-5573 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-5573?
Check the references section above for vendor advisories and patch information. Affected products include: Adcomplete Poll Pro.