CVE-2008-5773

EPSS 5.90% · P91 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-5773

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Nukedit 4.9.8 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing usernames and passwords via a direct request for database/dbsite.mdb.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Nukeedit 敏感信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

nukedit是一个小型快捷的CMS系统，适合做个人网站。 Nukedit 4.9.8版本在web根下储存敏感信息而未赋予足够的访问控制，这使得远程攻击者可以借助一个对database/dbsite.mdb的直接请求，来下载包含用户名和密码的数据库文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-5773

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-5773

请登录查看更多情报信息。

http://securityreason.com/securityalert/4840third-party-advisoryx_refsource_SREASON
http://secunia.com/advisories/33165third-party-advisoryx_refsource_SECUNIA
https://nvd.nist.gov/vuln/detail/CVE-2008-5773

Same Patch Batch · n/a · 2008-12-30 · 31 CVEs total

CVE-2008-5766		Faupload 'download.php' SQL注入漏洞
CVE-2008-5781		Cant Find A Gaming CMS SQL注入漏洞
CVE-2008-5780		ForestBlog 权限许可和访问控制漏洞
CVE-2008-5779		Free Links Directory Script 'lpro.php' SQL注入漏洞
CVE-2008-5778		Free Links Directory Script 'report.php' SQL注入漏洞
CVE-2008-5777		CadeNix 'cid' Parameter SQL注入漏洞
CVE-2008-5776		Aperto Blog 多个本地文件包含漏洞
CVE-2008-5775		Aperto Blog 'categories.php'SQL注入漏洞
CVE-2008-5774		ASPSiteWare HomeBuilder 多参数SQL注入漏洞
CVE-2008-5772		RealtyListings 多参数SQL注入漏洞
CVE-2008-5771		PHP Weather 'test.php'目录遍历漏洞
CVE-2008-5770		PHP Weather 'config/make_config.php'跨站攻击漏洞
CVE-2008-5769		Kerio MailServer WebMail多个跨站脚本漏洞
CVE-2008-5768		XOOPS AM Events 'print.php'SQL注入漏洞
CVE-2008-5767		Gnews Publisher 'authors.asp' SQL注入漏洞
CVE-2008-5751		AlstraSoft Web Email Script Enterprise 'id' Parameter SQL注入漏洞
CVE-2008-5765		2500mhz worksimple 权限许可和访问控制漏洞
CVE-2008-5764		WorkSimple 'calender.php'php远程文件包含漏洞
CVE-2008-5763		Simple Text-File Login script 'slogin_lib.inc.php' 远程文件包含漏洞
CVE-2008-5762		Simple Text-File Login Script 权限许可和访问控制问题漏洞

Showing top 20 of 31 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-5773

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-5773

I. Basic Information for CVE-2008-5773

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-5773

III. Intelligence Information for CVE-2008-5773

Same Patch Batch · n/a · 2008-12-30 · 31 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-5773

Leave a comment