CVE-2009-4936

Multiple SQL injection vulnerabilities in Small Pirate (SPirate) 2.1 allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to the default URI in an rss .xml action, or the id parameter to (2) pag1.php, (3) pag1-guest.php, (4) rss-comment_post.php (aka rss-coment_post.php), or (5) rss-pic-comment.php.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://osvdb.org/54784
http://osvdb.org/54785	Exploit
http://osvdb.org/54786	Exploit
http://osvdb.org/54787	Exploit
http://osvdb.org/54788	Exploit
http://secunia.com/advisories/35272	Vendor Advisory
http://www.exploit-db.com/exploits/8819
http://www.securityfocus.com/archive/1/503863/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/50837

Configurations

Configuration 1 (hide)

cpe:2.3:a:spirate:small_pirate:2.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-07-22 05:40

Updated : 2018-10-10 19:49

NVD link : CVE-2009-4936

Mitre link : CVE-2009-4936

CVE.ORG link : CVE-2009-4936

JSON object : View

Products Affected

spirate

small_pirate

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2009-4936", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2010-07-22T05:40:07.157", "references": [{"url": "http://osvdb.org/54784", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/54785", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://osvdb.org/54786", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://osvdb.org/54787", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://osvdb.org/54788", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/35272", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.exploit-db.com/exploits/8819", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/503863/100/0/threaded", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50837", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "Multiple SQL injection vulnerabilities in Small Pirate (SPirate) 2.1 allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to the default URI in an rss .xml action, or the id parameter to (2) pag1.php, (3) pag1-guest.php, (4) rss-comment_post.php (aka rss-coment_post.php), or (5) rss-pic-comment.php."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de inyecci\u00f3n SQL en la Small Pirate (SPirate) v2.1 permiten a atacantes remotos ejecutar comandos SQL a su elecci\u00f3n a trav\u00e9s de (1) el par\u00e1metro id a la URI por defecto en una acci\u00f3n rss .xml, o el par\u00e1metro id a (2) pag1.php, (3) pag1-guest.php, (4) rss-comment_post.php (alias rss-coment_post.php), o (5) rss-pic-comment.php."}], "lastModified": "2018-10-10T19:49:34.107", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:spirate:small_pirate:2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EE5F0BF-47DB-45C0-A15C-9A9C3E113477"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}