CVE-2008-2864
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-2864
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
eLineStudio Site Composer (ESC) 2.6 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) trigger.asp or (2) common2.asp in cms/include/, which reveals the database path.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
elinestudio site_composer 多个信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
eLineStudio Site Composer (ESC) 2.6 及其早期版本存在信息泄露漏洞,远程攻击者可以通过对(1) trigger.asp 或 (2) cms/include/的common2.asp提交的直接请求来获得敏感信息,该请求会泄露数据库路径。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-2864
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-2864
Please Login to view more intelligence information
Same Patch Batch · n/a · 2008-06-25 · 27 CVEs total
| CVE-2008-2853 | Easy Webstore 'index.php' SQL注入漏洞 | |
| CVE-2008-2866 | Caupo.net CaupoShop Classic 'csc_article_details.php' SQL注入漏洞 | |
| CVE-2008-2865 | Kalptaru Infotech PHP Site Lock 'index.php' SQL注入漏洞 | |
| CVE-2008-2863 | eLineStudio Site Composer 多个路径遍历漏洞 | |
| CVE-2008-2862 | eLineStudio Site Composer 多个SQL注入漏洞 | |
| CVE-2008-2861 | eLineStudio Site Composer 多个跨站脚本攻击漏洞 | |
| CVE-2008-2860 | AJ Auction Pro web category.php SQL注入漏洞 | |
| CVE-2008-2859 | NetWin SurgeMail IMAP服务拒绝服务漏洞 | |
| CVE-2008-2858 | Webchamado index.php SQL注入漏洞 | |
| CVE-2008-2857 | alstrasoft askme cleartext密码存储 信任管理漏洞 | |
| CVE-2008-2856 | OwnRS 'clanek.php' SQL注入漏洞 | |
| CVE-2008-2855 | OwnRS 'clanek.php' 跨站脚本攻击漏洞 | |
| CVE-2008-2854 | Orlando CMS 多个远程文件包含漏洞 | |
| CVE-2008-1951 | 多款Red Hat产品 权限许可和访问控制问题漏洞 | |
| CVE-2008-2852 | CGIWrap 错误信息未明跨站脚本攻击漏洞 | |
| CVE-2008-2851 | OFFSystem 多个缓冲区溢出漏洞 | |
| CVE-2008-2850 | Drupal TrailScout 模块SQL注入漏洞 | |
| CVE-2008-2849 | Drupal TrailScout Module 跨站脚本攻击漏洞 | |
| CVE-2008-2848 | MindTouch DekiWiki 搜索功能跨站脚本漏洞 | |
| CVE-2008-2847 | SMaxtrade AIO Trade 模块 modules.php SQL注入漏洞 |
Showing top 20 of 27 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem - CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin
V. Comments for CVE-2008-2864
No comments yet