CVE-2008-4616

EPSS 2.55%
Published 20.10.2008 18:14:04
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

The SpamBam plugin for WordPress allows remote attackers to bypass restrictions and add blog comments by using server-supplied values to calculate a shared key.

Affected products Warnungen 0 Metrics 2 CWE 1 References 7

Data is provided by the National Vulnerability Database (NVD)

The Spanner ≫ Spambam Plugin

Wordpress ≫ Spambam Plugin

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	2.55%	0.841

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://securityreason.com/securityalert/4438

http://www.securityfocus.com/archive/1/486333/100/200/threaded

http://www.securityfocus.com/bid/27291

https://exchange.xforce.ibmcloud.com/vulnerabilities/39690

https://nvd.nist.gov/vuln/detail/CVE-2008-4616

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-4616

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-4616

EUVD