CyberSec.Space Logo
CVEブラウザに戻る

CVE-2008-0735

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0090%
EPSS Percentile27.48th
Published2008年2月13日
Last Modified2026年4月23日

Vulnerability Description

SQL injection vulnerability in mod/gallery/ajax/gallery_data.php in AuraCMS 2.2 allows remote attackers to execute arbitrary SQL commands via the albums parameter.

Affected Platforms (CPE)

📦
Auracms

Auracms

= 2.2

References & Advisories

🔗 http://secunia.com/advisories/28950
🔗 http://www.securityfocus.com/bid/27764
🔗 https://www.exploit-db.com/exploits/5105
🔗 http://secunia.com/advisories/28950
🔗 http://www.securityfocus.com/bid/27764
🔗 https://www.exploit-db.com/exploits/5105

関連する脆弱性情報

CVE-2018-163388.8

An issue was discovered in AuraCMS 2.3. There is a CSRF vulnerability that can change the administrator's password via admin.php?m...

CVE-2007-41717.5

SQL injection vulnerability in komentar.php in the Forum Module for auraCMS (Modul Forum Sederhana) allows remote attackers to exe...

CVE-2006-35597.5

Multiple SQL injection vulnerabilities in Arif Supriyanto auraCMS 1.62 allow remote attackers to execute arbitrary SQL commands an...

CVE-2007-48047.5

Multiple SQL injection vulnerabilities in AuraCMS 1.5rc allow remote attackers to execute arbitrary SQL commands via the id parame...