CVE-2008-6837

EUVD-2008-6797
SQL injection vulnerability in Zoph 0.7.2.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different issue than CVE-2008-3258.  NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
Affected Products (NVD)
VendorProductVersion
zophzoph
0.7.2.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
zoph
bookworm
1.0.1-3
fixed
bullseye
0.9.16-1
fixed
lenny
no-dsa
sid
1.0.1-4
fixed
trixie
1.0.1-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
zoph
dapper
ignored
hardy
ignored
intrepid
ignored
jaunty
ignored
karmic
ignored
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/30116
http://www.securityfocus.com/bid/30116/exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/43693
http://www.securityfocus.com/bid/30116
http://www.securityfocus.com/bid/30116/exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/43693