CVE-2008-3092

SQL injection vulnerability in the Taxonomy Autotagger module 5.x before 5.x-1.8 for Drupal allows remote authenticated users, with create or edit post permissions, to execute arbitrary SQL commands via unspecified vectors.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 48%
Common Weakness Enumeration
References
http://drupal.org/node/277877
http://secunia.com/advisories/30933
http://www.securityfocus.com/bid/30067
https://exchange.xforce.ibmcloud.com/vulnerabilities/43571
http://drupal.org/node/277877
http://secunia.com/advisories/30933
http://www.securityfocus.com/bid/30067
https://exchange.xforce.ibmcloud.com/vulnerabilities/43571