CVE-2008-5650

SQL injection vulnerability in the login directory in AlstraSoft Web Host Directory allows remote attackers to execute arbitrary SQL commands via the pwd parameter.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 46%
Common Weakness Enumeration
References
http://secunia.com/advisories/32660
http://securityreason.com/securityalert/4771
http://www.securityfocus.com/bid/32298
https://exchange.xforce.ibmcloud.com/vulnerabilities/46592
https://www.exploit-db.com/exploits/7103
http://secunia.com/advisories/32660
http://securityreason.com/securityalert/4771
http://www.securityfocus.com/bid/32298
https://exchange.xforce.ibmcloud.com/vulnerabilities/46592
https://www.exploit-db.com/exploits/7103