CVE-2008-5572

EPSS 5.19% · P90 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-5572

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Professional Download Assistant 0.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for database/downloads.mdb.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Professional Download Assistant database/downloads.mdb敏感信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Professional Download Assistant是一款免费的，采用P2P技术的下载工具，也是一个全功能的下载加速以及管理工具。 Professional Download Assistant 0.1版本在WEB根目录下储存敏感信息，却没有给予足够的访问控制，这会允许远程攻击者可以借助对database/downloads.mdb提交一个直接请求，下载数据库文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-5572

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-5572

请登录查看更多情报信息。

https://www.exploit-db.com/exploits/7371exploitx_refsource_EXPLOIT-DB
http://securityreason.com/securityalert/4748third-party-advisoryx_refsource_SREASON
http://osvdb.org/50547vdb-entryx_refsource_OSVDB
https://exchange.xforce.ibmcloud.com/vulnerabilities/47148vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2008-5572

Same Patch Batch · n/a · 2008-12-15 · 26 CVEs total

CVE-2008-5571		dotnetindex Professional Download Assistant admin/login.asp SQL注入漏洞
CVE-2008-5584		ProjectPier 多个跨站脚本漏洞
CVE-2008-5583		ProjectPier index.php跨站请求伪造漏洞
CVE-2008-5582		Nukedit utilities/login.asp SQL注入漏洞
CVE-2008-5581		mini-pub 0.3 mini-pub.php/front-end/img.php PHP远程文件包含漏洞
CVE-2008-5580		mini-pub mini-pub.php/front-end/cat.php 执行任意命令漏洞
CVE-2008-5579		mini-pub 0.3 mini-pub.php/front-end/cat.php绝对路径遍历漏洞
CVE-2008-5578		sCssBoard 'index.php' 多个SQL注入漏洞
CVE-2008-5577		sCssBoard index.php PHP远程文件包含漏洞
CVE-2008-5576		sCssBoard admin/forums.php 绕过认证并获得权限漏洞
CVE-2008-5575		Pro Clan Manager 'PHPSESSID' 固定会话漏洞
CVE-2008-5574		unscripts UN Webmaster Marketplace 'member.php' SQL注入漏洞
CVE-2008-5573		Poll Pro登录功能SQL注入漏洞
CVE-2008-5559		PostEcards 'sendcard.cfm' SQL注入漏洞
CVE-2008-5570		PHP Multiple Newsletters index.php目录遍历漏洞
CVE-2008-5569		PhPepperShop 多个跨站脚本漏洞
CVE-2008-5568		IPN Pro admin/settings.php 跨站请求伪造漏洞
CVE-2008-5567		Bonza Cart admin/ad_settings.php 跨站请求伪造漏洞
CVE-2008-5566		PHP Multiple Newsletters 'index.php' 跨站脚本攻击漏洞
CVE-2008-5565		DL PayCart admin/settings.php 跨站请求伪造漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-5572

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-5572

I. Basic Information for CVE-2008-5572

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-5572

III. Intelligence Information for CVE-2008-5572

Same Patch Batch · n/a · 2008-12-15 · 26 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-5572

Leave a comment