Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2008-2428
Modified
More InfoOfficial Page
Source-PSIRT-CNA@flexerasoftware.com
View Known Exploited Vulnerability (KEV) details
Published At-18 Jun, 2008 | 19:41
Updated At-11 Oct, 2018 | 20:41

Multiple SQL injection vulnerabilities in TorrentTrader 1.08 Classic allow remote attackers to execute arbitrary SQL commands via the (1) email or (2) wantusername parameter to account-signup.php, or the (3) receiver parameter to account-inbox.php in a msg action.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.06.8MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
CPE Matches
torrenttrader
torrenttrader
>>torrenttrader_classic>>1.08
cpe:2.3:a:torrenttrader:torrenttrader_classic:1.08:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-89Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://secunia.com/advisories/30565PSIRT-CNA@flexerasoftware.com
Vendor Advisory
http://secunia.com/secunia_research/2008-15/advisory/PSIRT-CNA@flexerasoftware.com
Vendor Advisory
http://sourceforge.net/project/shownotes.php?group_id=98584&release_id=545219PSIRT-CNA@flexerasoftware.com
N/A
http://www.securityfocus.com/archive/1/493434/100/0/threadedPSIRT-CNA@flexerasoftware.com
N/A
http://www.securityfocus.com/bid/29787PSIRT-CNA@flexerasoftware.com
N/A
http://www.torrenttrader.org/index.php?showtopic=8879PSIRT-CNA@flexerasoftware.com
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/43165PSIRT-CNA@flexerasoftware.com
N/A
Change History
0Changes found
Details not found