CVE-2008-6934

Static code injection vulnerability in Sanus|artificium (aka Sanusart) Free simple guestbook PHP script, when downloaded before 20081111, allows remote attackers to inject arbitrary PHP code into messages.txt via the message parameter to act.php, which is executed when guestbook/guestbook.php is accessed. NOTE: some of these details are obtained from third party information.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://osvdb.org/49703
http://secunia.com/advisories/32643	Vendor Advisory
http://www.sanusart.com/news.php
http://www.securityfocus.com/bid/32240	Exploit
http://www.vupen.com/english/advisories/2008/3095	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/46526
https://www.exploit-db.com/exploits/7079

Configurations

Configuration 1 (hide)

cpe:2.3:a:sansuart:free_simple_guestbook_php_script:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-08-11 21:00

Updated : 2024-02-04 17:33

NVD link : CVE-2008-6934

Mitre link : CVE-2008-6934

CVE.ORG link : CVE-2008-6934

JSON object : View

Products Affected

sansuart

free_simple_guestbook_php_script

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

{"id": "CVE-2008-6934", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2009-08-11T21:00:00.517", "references": [{"url": "http://osvdb.org/49703", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/32643", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.sanusart.com/news.php", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/32240", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/3095", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46526", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/7079", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-94"}]}], "descriptions": [{"lang": "en", "value": "Static code injection vulnerability in Sanus|artificium (aka Sanusart) Free simple guestbook PHP script, when downloaded before 20081111, allows remote attackers to inject arbitrary PHP code into messages.txt via the message parameter to act.php, which is executed when guestbook/guestbook.php is accessed. NOTE: some of these details are obtained from third party information."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n de c\u00f3digo est\u00e1tico en Sanus|artificium (tambi\u00e9n conocido como Sanusart) Free simple guestbook PHP script, descargado antes de 20081111, permite a atacantes remotos la inyecci\u00f3n de c\u00f3digo PHP en messages.txt a trav\u00e9s del par\u00e1metro \"message\" a act.php, que es ejecutado cuando se accede a guestbook/guestbook.php. NOTA: algunos de estos detalles han sido obtenidos a partir de informaci\u00f3n de terceros."}], "lastModified": "2017-09-29T01:33:25.777", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sansuart:free_simple_guestbook_php_script:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4074AA7C-036B-4D65-B5CC-2155C6A96B90"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}