CVE-2008-4655

Published Oct 22, 2008

Last updated 14 years ago

CVSS info 7.5

Overview

Description: SQL injection vulnerability in the Simple survey (simplesurvey) 1.7.0 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-89

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5F1C59B0-CDF2-4F9A-88C7-61E8F18590DB"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F242896-9360-4B38-87B5-C6A03FF73B3D",
            "versionEndIncluding": "1.7.0"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFE067F4-7FCE-44AF-8E38-0A9F4B094F73"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E65DEE3B-33D3-442D-B9E8-36585F00357E"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BB4840E-BBED-4EAB-AA04-F3193F815735"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "484497FB-51D0-47B0-9405-242018F52227"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A74E26A-94CA-4C4F-A792-64A5730811BC"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98C7822E-E935-4B51-8A41-8C99A09AA035"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC1145E3-04DC-4D7F-A9DE-C4ADE6587D77"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B2C8D35-7CAB-4A06-A467-1542FA794698"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2186BEA-84A8-4845-BE7B-5B689AA4F619"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C851842A-E114-447A-89FE-F35442358A9D"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19CB2DEB-A82F-4A02-97BA-5E4B1F65B3E4"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9FF96F1B-16AE-4DB5-A228-B54935D69C34"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CBB5372C-1710-4668-8B49-4CB71C61EF9D"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9F8083E-752F-43A3-9F71-F367C5A068C0"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02DE3588-4A36-494C-8AC7-D6A850AA7326"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "69740413-1D55-4A41-A8DB-C41F244BC586"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FFF167AC-30F2-4E8E-97F6-9ACCF084879C"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F1C4862-BCB6-4A98-AFDD-929044FB469D"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "117AF0F4-073D-42DD-8A2A-5BB9AA1C740F"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08C7EB07-A982-48DC-BDC4-E077EB8E4EE4"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.5.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "60D3B378-1549-466B-831A-3DA955E78308"
          },
          {
            "criteria": "cpe:2.3:a:typo3:simplesurvey:1.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A602B7CA-8A9A-42E3-9F8B-11F9167EA8EF"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References