CNA 2008

VulDB is an officially certified CVE Numbering Authority (CNA) by MITRE and Authorized Data Publisher (ADP) by NIST NVD. We are authorized to handle new vulnerability submissions, assign unique CVEs and disclose them. CVE is an international program to discover vulnerabilities which are then assigned and published to the CVE list. Partners coordinate such CVE entries to communicate consistent descriptions. Information technology and cybersecurity professionals all around the world use CVE records to ensure they are discussing the same issues, and to coordinate their efforts to prioritize and address these properly.

Поставщик

iGamingModules2
cfire242

Продукт

iGamingModules flashgames2
cfire24 ajaxlife2

Устранение последствий

Official Fix4
Temporary Fix0
Workaround0
Unavailable0
Not Defined0

Эксплуатационная пригодность

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined4

Вектор доступа

Not Defined0
Physical0
Local0
Adjacent0
Network4

Аутентификация

Not Defined0
High0
Low4
None0

Взаимодействие с пользователем

Not Defined0
Required2
None2

VulDB

≤10
≤20
≤30
≤42
≤50
≤60
≤72
≤80
≤90
≤100

Эксплойт 0-дня

<1k0
<2k4
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0
IDУязвимостиScopeResponsibleПредставлениеСозданоОбновленоCVESubmitCNA
222334Email Registration email_registration.module email_registration_user sql-инъекцияVulDBVulDB05.03.202331.03.2023CVE-2008-10004
 
принято
222288iGamingModules flashgames game.php sql-инъекцияVulDBVulDB03.03.202331.03.2023CVE-2008-10003
 
принято
222286cfire24 ajaxlife межсайтовый скриптингVulDBVulDB03.03.202331.03.2023CVE-2008-10002
 
принято
3809Pro2col Stingray FTS межсайтовый скриптингVulDBVulDB12.09.200828.01.2022CVE-2008-10001
 
принято

ПредыдущийОбзорДалее

Might our Artificial Intelligence support you?

Check our Alexa App!