Vulnerability Details : CVE-2008-6470
Multiple unspecified vulnerabilities in ClanSphere before 2008.2.1 allow remote attackers to obtain sensitive information, and possibly have unknown other impact, via vectors related to "javascript insert" and the (1) mods/messages/getusers.php and (2) mods/abcode/listimg.php files. NOTE: some of these details are obtained from third party information.
Products affected by CVE-2008-6470
- cpe:2.3:a:clansphere:clansphere:*:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.4:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.4.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2008-6470
0.56%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 66 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2008-6470
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2008-6470
Jump to