CVE-2008-6470

EUVD-2008-6440
Multiple unspecified vulnerabilities in ClanSphere before 2008.2.1 allow remote attackers to obtain sensitive information, and possibly have unknown other impact, via vectors related to "javascript insert" and the (1) mods/messages/getusers.php and (2) mods/abcode/listimg.php files.  NOTE: some of these details are obtained from third party information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Affected Products (NVD)
VendorProductVersion
clansphereclansphere
𝑥
≤ 2008
clansphereclansphere
2007.3.1
clansphereclansphere
2007.4
clansphereclansphere
2007.4.1
clansphereclansphere
2007.4.2
clansphereclansphere
2007.4.3
clansphereclansphere
2007.4.4
𝑥
= Vulnerable software versions
References
http://osvdb.org/48451
http://secunia.com/advisories/31965
http://sourceforge.net/project/shownotes.php?release_id=627530
http://www.clansphere.net/index/news/view/id/289
http://www.clansphere.net/index/news/view/id/306
http://www.securityfocus.com/bid/31293
https://exchange.xforce.ibmcloud.com/vulnerabilities/45269
http://osvdb.org/48451
http://secunia.com/advisories/31965
http://sourceforge.net/project/shownotes.php?release_id=627530
http://www.clansphere.net/index/news/view/id/289
http://www.clansphere.net/index/news/view/id/306
http://www.securityfocus.com/bid/31293
https://exchange.xforce.ibmcloud.com/vulnerabilities/45269