CVE-2008-5190

EUVD-2008-5167
SQL injection vulnerability in index.php in eSHOP100 allows remote attackers to execute arbitrary SQL commands via the SUB parameter.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 76%
Common Weakness Enumeration
References
http://secunia.com/advisories/30712
http://securityreason.com/securityalert/4619
http://www.securityfocus.com/bid/30002
http://www.vupen.com/english/advisories/2008/1971/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43452
https://www.exploit-db.com/exploits/5970
http://secunia.com/advisories/30712
http://securityreason.com/securityalert/4619
http://www.securityfocus.com/bid/30002
http://www.vupen.com/english/advisories/2008/1971/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43452
https://www.exploit-db.com/exploits/5970