Vulnerability Database

290,020

Total vulnerabilities in the database

CVE-2008-3845

Multiple SQL injection vulnerabilities in Crafty Syntax Live Help (CSLH) 2.14.6 and earlier allow remote attackers to execute arbitrary SQL commands via the department parameter to (1) is_xmlhttp.php and (2) is_flush.php.

  • Published: Aug 28, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-3845
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

OWASP TOP 10:

Software From Fixed in
craftysyntax / crafty_syntax_live_help 2.11.4 2.11.4.x
craftysyntax / crafty_syntax_live_help 2.14.5 2.14.5.x
craftysyntax / crafty_syntax_live_help 2.0 2.0.x
craftysyntax / crafty_syntax_live_help 2.12.5 2.12.5.x
craftysyntax / crafty_syntax_live_help 2.14.4 2.14.4.x
craftysyntax / crafty_syntax_live_help 2.11.2 2.11.2.x
craftysyntax / crafty_syntax_live_help 2.11.7 2.11.7.x
craftysyntax / crafty_syntax_live_help 2.11.1 2.11.1.x
craftysyntax / crafty_syntax_live_help 1.0 1.0.x
craftysyntax / crafty_syntax_live_help 1.6 1.6.x
craftysyntax / crafty_syntax_live_help 2.12.9 2.12.9.x
craftysyntax / crafty_syntax_live_help 2.12.6 2.12.6.x
craftysyntax / crafty_syntax_live_help 2.12.4 2.12.4.x
craftysyntax / crafty_syntax_live_help 1.3 1.3.x
craftysyntax / crafty_syntax_live_help 2.11.0 2.11.0.x
craftysyntax / crafty_syntax_live_help 2.12.1 2.12.1.x
craftysyntax / crafty_syntax_live_help 1.5 1.5.x
craftysyntax / crafty_syntax_live_help 2.10.1 2.10.1.x
craftysyntax / crafty_syntax_live_help 2.12.2 2.12.2.x
craftysyntax / crafty_syntax_live_help 2.12.3 2.12.3.x
craftysyntax / crafty_syntax_live_help 2.11.5 2.11.5.x
craftysyntax / crafty_syntax_live_help 2.11.6 2.11.6.x
craftysyntax / crafty_syntax_live_help 2.14.1 2.14.1.x
craftysyntax / crafty_syntax_live_help - 2.14.6.x
craftysyntax / crafty_syntax_live_help 1.1 1.1.x
craftysyntax / crafty_syntax_live_help 2.13.0 2.13.0.x
craftysyntax / crafty_syntax_live_help 2.10.3 2.10.3.x
craftysyntax / crafty_syntax_live_help 2.12.7 2.12.7.x
craftysyntax / crafty_syntax_live_help 2.12.8 2.12.8.x
craftysyntax / crafty_syntax_live_help 1.2 1.2.x
craftysyntax / crafty_syntax_live_help 2.14.0 2.14.0.x
craftysyntax / crafty_syntax_live_help 1.7 1.7.x
craftysyntax / crafty_syntax_live_help 2.10.4 2.10.4.x
craftysyntax / crafty_syntax_live_help 1.4 1.4.x
craftysyntax / crafty_syntax_live_help 2.14.3 2.14.3.x
craftysyntax / crafty_syntax_live_help 2.10.0 2.10.0.x
craftysyntax / crafty_syntax_live_help 2.1 2.1.x
craftysyntax / crafty_syntax_live_help 2.10.2 2.10.2.x
craftysyntax / crafty_syntax_live_help 2.13.1 2.13.1.x
craftysyntax / crafty_syntax_live_help 2.10.5 2.10.5.x
craftysyntax / crafty_syntax_live_help 2.11.3 2.11.3.x
craftysyntax / crafty_syntax_live_help 2.14.2 2.14.2.x
craftysyntax / crafty_syntax_live_help 2.12.0 2.12.0.x