{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-02-02T00:00:00", "descriptions": [{"lang": "en", "value": "SQL injection vulnerability in wordspew-rss.php in the Wordspew plugin before 3.72 for Wordpress allows remote attackers to execute arbitrary SQL commands via the id parameter."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "5039", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/5039"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://pierre.sudarovich.free.fr/index.php/2006/02/28/ajax-shoutbox/"}, {"name": "27583", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/27583"}, {"name": "28767", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/28767"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-0682", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "SQL injection vulnerability in wordspew-rss.php in the Wordspew plugin before 3.72 for Wordpress allows remote attackers to execute arbitrary SQL commands via the id parameter."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "5039", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/5039"}, {"name": "http://pierre.sudarovich.free.fr/index.php/2006/02/28/ajax-shoutbox/", "refsource": "CONFIRM", "url": "http://pierre.sudarovich.free.fr/index.php/2006/02/28/ajax-shoutbox/"}, {"name": "27583", "refsource": "BID", "url": "http://www.securityfocus.com/bid/27583"}, {"name": "28767", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28767"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T07:54:22.605Z"}, "title": "CVE Program Container", "references": [{"name": "5039", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/5039"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://pierre.sudarovich.free.fr/index.php/2006/02/28/ajax-shoutbox/"}, {"name": "27583", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/27583"}, {"name": "28767", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/28767"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-0682", "datePublished": "2008-02-12T00:00:00", "dateReserved": "2008-02-11T00:00:00", "dateUpdated": "2024-08-07T07:54:22.605Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:wordpress:wordspew:*:*:*:*:*:*:*:*", "matchCriteriaId": "CD08DF3D-7E32-4B81-BCDF-8159A55C231B", "versionEndIncluding": "3.71", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:1.6:*:*:*:*:*:*:*", "matchCriteriaId": "4F806B4D-3107-43D9-B843-8909EE4BDA38", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:1.7:*:*:*:*:*:*:*", "matchCriteriaId": "F04E9C2E-FC4B-4FE9-ADF3-D208E2CC0569", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:1.8:*:*:*:*:*:*:*", "matchCriteriaId": "5D87B34D-B00D-42BD-84DA-5BE13029C9CD", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "8870FF50-567C-4FAD-9646-154B65F943DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.1:*:*:*:*:*:*:*", "matchCriteriaId": "D674AFDF-8325-4F54-811B-56ABEB380DC5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "EE9E0EAB-C3FC-4FD3-AF01-90DE52A29E7D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.3:*:*:*:*:*:*:*", "matchCriteriaId": "8B11D067-68DB-4152-97FA-A05812C8EBAB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.5:*:*:*:*:*:*:*", "matchCriteriaId": "07ACFBC4-0BFD-47DD-8CFE-0855685975E2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.6:*:*:*:*:*:*:*", "matchCriteriaId": "AE13D621-C452-44E1-9F60-877C94B633D6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.7:*:*:*:*:*:*:*", "matchCriteriaId": "2555C237-7E54-47E4-BE8D-FFB7DABBB901", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.8:*:*:*:*:*:*:*", "matchCriteriaId": "98C23360-EC17-45FE-8201-C8FBD6CFADF5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.9:*:*:*:*:*:*:*", "matchCriteriaId": "BC93864E-AE1B-4122-B774-7AC18C8F1FF7", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.31:*:*:*:*:*:*:*", "matchCriteriaId": "0958810F-599F-48D0-985D-8237CF1383A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.32:*:*:*:*:*:*:*", "matchCriteriaId": "EAC0BDAC-9B31-4363-A9DC-B94E1CAB89EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.85:*:*:*:*:*:*:*", "matchCriteriaId": "78B526A3-65B1-4F3E-A1F3-D983D38B3027", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.91:*:*:*:*:*:*:*", "matchCriteriaId": "60822A32-86A5-42D0-AF18-19777DF22EA6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.92:*:*:*:*:*:*:*", "matchCriteriaId": "7C748AE9-335A-4099-A783-8C4589C15C10", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.93:*:*:*:*:*:*:*", "matchCriteriaId": "38491D2E-8F3C-4AF9-938C-8A09FFBED146", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.94:*:*:*:*:*:*:*", "matchCriteriaId": "370177EF-D9B8-47D4-B802-1D2031D5BD19", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:2.95:*:*:*:*:*:*:*", "matchCriteriaId": "EC71EDDA-6C3F-4759-9C2E-AB8846FC34F3", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "028F61A4-6385-4A78-9426-46CC09C0FC84", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.01:*:*:*:*:*:*:*", "matchCriteriaId": "962A6E85-C606-432A-B735-F3B330BC4CF1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.1:*:*:*:*:*:*:*", "matchCriteriaId": "2F81D1B3-8D25-4296-A2FF-86894622233B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.2:*:*:*:*:*:*:*", "matchCriteriaId": "44EA83AF-7323-4D18-BF7B-0460DAE420FB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.02:*:*:*:*:*:*:*", "matchCriteriaId": "248D33B1-2651-4331-A8C8-A80B3E1FF3E6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.3:*:*:*:*:*:*:*", "matchCriteriaId": "F5E26B87-A8BF-4432-952A-1D867F7AB2CE", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.6:*:*:*:*:*:*:*", "matchCriteriaId": "5DBE390B-A51B-4ED6-ADA8-65825BF8CDF8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.7:*:*:*:*:*:*:*", "matchCriteriaId": "50A1B31E-638B-4EB0-B762-923C0EDE51A7", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.15:*:*:*:*:*:*:*", "matchCriteriaId": "82148B97-88ED-4193-8A1C-79425799B896", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.16:*:*:*:*:*:*:*", "matchCriteriaId": "7688BB29-26C2-4D03-97F0-B42DCE335B17", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.021:*:*:*:*:*:*:*", "matchCriteriaId": "E6124A31-1CB7-4A02-95E0-8CCF3AEA277E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.022:*:*:*:*:*:*:*", "matchCriteriaId": "C80D0958-CDE3-42E0-882C-69D202216F86", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.31:*:*:*:*:*:*:*", "matchCriteriaId": "E6F9A39F-048F-4B5D-9997-9EA53CFC0F96", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.32:*:*:*:*:*:*:*", "matchCriteriaId": "BD73FD43-CCB4-4F93-B6C8-9A923FE5FF31", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.33:*:*:*:*:*:*:*", "matchCriteriaId": "D33CDBC7-1C15-46C5-820A-FA894B559238", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.34:*:*:*:*:*:*:*", "matchCriteriaId": "CF88C4F6-38A8-4D19-B160-1A78563D367C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.51:*:*:*:*:*:*:*", "matchCriteriaId": "BEA61373-6FD8-48C2-9DDD-55A39E4DD9C9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wordpress:wordspew:3.52:*:*:*:*:*:*:*", "matchCriteriaId": "96B2544B-D7FD-4C88-8409-26B8AF4342E2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "SQL injection vulnerability in wordspew-rss.php in the Wordspew plugin before 3.72 for Wordpress allows remote attackers to execute arbitrary SQL commands via the id parameter."}, {"lang": "es", "value": "Una vulnerabilidad de inyecci\u00f3n SQL en el archivo wordspew-rss.php en el plugin Wordspew versiones anteriores a 3.72 para Wordpress, permite a los atacantes remotos ejecutar comandos SQL arbitrarios por medio del par\u00e1metro id."}], "id": "CVE-2008-0682", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-02-12T01:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://pierre.sudarovich.free.fr/index.php/2006/02/28/ajax-shoutbox/"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/28767"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/27583"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/5039"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://pierre.sudarovich.free.fr/index.php/2006/02/28/ajax-shoutbox/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/28767"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/27583"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.exploit-db.com/exploits/5039"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}