CNA 2008

VulDB is an officially certified CVE Numbering Authority (CNA) by MITRE and Authorized Data Publisher (ADP) by NIST NVD. We are authorized to handle new vulnerability submissions, assign unique CVEs and disclose them. CVE is an international program to discover vulnerabilities which are then assigned and published to the CVE list. Partners coordinate such CVE entries to communicate consistent descriptions. Information technology and cybersecurity professionals all around the world use CVE records to ensure they are discussing the same issues, and to coordinate their efforts to prioritize and address these properly.

Fournisseur

Not Defined	1
iGamingModules	1
cfire24	1
Pro2col	1

Produit

Email Registration	1
iGamingModules flashgames	1
cfire24 ajaxlife	1
Pro2col Stingray FTS	1

Contre-mesures

Correctif officiel	4
Correctif temporaire	0
Solution de contournement	0
Non disponible	0
Non défini	0

Exploitabilité

Attaqué	0
Hautement fonctionnel	0
Fonctionnel	0
Preuve de concept	0
Non prouvée	0
Non défini	4

Vecteur d'accès

Not Defined	0
Physical	0
Local	0
Adjacent	0
Network	4

Authentification

Not Defined	0
High	0
Low	4
None	0

Interaction de l'utilisateur

Not Defined	0
Required	2
None	2

VulDB

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	1
≤7	2
≤8	0
≤9	0
≤10	0

Exploitation 0 jour

<1k	0
<2k	3
<5k	0
<10k	0
<25k	1
<50k	0
<100k	0
≥100k	0

ID	Vulnérabilité	Portée	Responsable	Créé	Mise à jour	CVE	CNA
222334	Email Registration email_registration.module email_registration_user injection SQL	VulDB	VulDB	05/03/2023	31/03/2023	CVE-2008-10004	accepté
222288	iGamingModules flashgames game.php injection SQL	VulDB	VulDB	03/03/2023	31/03/2023	CVE-2008-10003	accepté
222286	cfire24 ajaxlife cross site scripting	VulDB	VulDB	03/03/2023	31/03/2023	CVE-2008-10002	accepté
3809	Pro2col Stingray FTS cross site scripting	VulDB	VulDB	12/09/2008	28/01/2022	CVE-2008-10001	accepté

◂ Précédent Aperçu Suivant ▸

Want to know what is going to be exploited?

We predict KEV entries!