Published: 19/11/2008 Updated: 11/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 760

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in The Rat CMS Pre-Alpha 2 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) viewarticle.php and (2) viewarticle2.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
theratstudios the rat cms 2

source: wwwsecurityfocuscom/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, c ...

source: wwwsecurityfocuscom/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, ...

CWE-89 http://www.securityfocus.com/bid/29959 http://securityreason.com/securityalert/4612 https://exchange.xforce.ibmcloud.com/vulnerabilities/43377 http://www.securityfocus.com/archive/1/493684/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/31977/

CVE-2008-5163

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect