Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2008-6364

EPSS 0.40% · P61
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-6364

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
SQL injection vulnerability in logon_process.jsp in Ad Server Solutions Banner Exchange Solution Java allows remote attackers to execute arbitrary SQL commands via the (1) username (uname parameter) and (2) password (pass parameter). NOTE: some of these details are obtained from third party information.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Adserversolutions Banner Exchange Software Java 'logon_license.jsp'多个SQL注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Ad Server Solutions是提供企业平台自助服务的广告管理和附属软件的解决方案。 Ad Server Solutions Banner Exchange Solution Java的logon_process.jsp中存在SQL注入漏洞。远程攻击者可以借助(1)用户名(uname参数)以及(2)密码(pass参数),执行任意SQL指令。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2008-6364

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2008-6364

Please Login to view more intelligence information

Same Patch Batch · n/a · 2009-03-02 · 50 CVEs total

CVE-2008-6351TurnkeyForms Local Classifieds 'listtest.php'跨站脚本攻击漏洞
CVE-2008-6357Donnafontenot MyCal Personal Events Calendar 'mycal.mdb'权限许可和访问控制漏洞
CVE-2008-6361Insun_Podcast InSun FeedCms 'lang'参数本地文件包含漏洞
CVE-2008-6362Ezonelink Membership Script 'sitepage.php' SQL注入漏洞
CVE-2008-6363Capilano DesignWorks Professional '.cct'文件缓冲区溢出漏洞
CVE-2008-6365Adserversolutions Ad Management Java 'logon.jsp' SQL注入漏洞
CVE-2008-6366Adserversolutions Affiliate Software Java 'logon.jsp' SQL注入漏洞
CVE-2008-6360ImpressCMS 'modules/system/admin.php'跨站脚本攻击漏洞
CVE-2008-6353ASP-CMS 'index.asp' SQL注入漏洞
CVE-2008-6352Xpoze 'home.html' SQL注入漏洞
CVE-2008-6354Net Guys ASPired2poll 'ASPired2poll.mdb'权限许可和访问控制漏洞
CVE-2008-6350TurnkeyForms Local Classifieds 'listtest.php'SQL注入漏洞
CVE-2008-6349TurnkeyForms Business Survey Pro 'survey_results_text.php' SQL注入漏洞
CVE-2008-6348Develop It Easy Photo Gallery多个SQL注入漏洞
CVE-2008-6347Joomla! Onguma Time Sheet 'lib/onguma.class.php' PHP远程文件包含漏洞
CVE-2008-63921Scripts Z1Exchange 'showads.php' SQL注入击漏洞
CVE-2008-6391nexusjnr jbook 'main.asp'SQL注入漏洞
CVE-2008-6390Ocean12Tech Ocean12 Membership Manager Pro 'login.asp' SQL注入漏洞
CVE-2008-6389Aliensoftcorp Rae Media Web Based Contact Management 'asadmin/default.asp' SQL注入漏洞
CVE-2008-63884u2ges rapid_classified 权限许可和访问控制漏洞

Showing top 20 of 50 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2008-6364

No comments yet

Leave a comment