Vulnerability Details : CVE-2008-6470
Multiple unspecified vulnerabilities in ClanSphere before 2008.2.1 allow remote attackers to obtain sensitive information, and possibly have unknown other impact, via vectors related to "javascript insert" and the (1) mods/messages/getusers.php and (2) mods/abcode/listimg.php files. NOTE: some of these details are obtained from third party information.
Exploit prediction scoring system (EPSS) score for CVE-2008-6470
Probability of exploitation activity in the next 30 days: 0.66%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 77 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2008-6470
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|
|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
nvd@nist.gov |
References for CVE-2008-6470
Products affected by CVE-2008-6470
- cpe:2.3:a:clansphere:clansphere:*:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.4:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:clansphere:clansphere:2007.4.2:*:*:*:*:*:*:*