Craftysyntax Crafty Syntax Live Help vulnerabilities
2 known vulnerabilities affecting craftysyntax/crafty_syntax_live_help.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-3845P3HIGHCVSS 7.5PoC≤ 2.14.6v1.0+41 more2008-08-27
CVE-2008-3845 [HIGH] CWE-89 CVE-2008-3845: Multiple SQL injection vulnerabilities in Crafty Syntax Live Help (CSLH) 2.14.6 and earlier allow re
Multiple SQL injection vulnerabilities in Crafty Syntax Live Help (CSLH) 2.14.6 and earlier allow remote attackers to execute arbitrary SQL commands via the department parameter to (1) is_xmlhttp.php and (2) is_flush.php.
nvd
CVE-2008-3840P4MEDIUMCVSS 5.0≤ 2.14.6v1.0+65 more2008-08-27
CVE-2008-3840 [MEDIUM] CWE-255 CVE-2008-3840: Crafty Syntax Live Help (CSLH) 2.14.6 and earlier stores passwords in cleartext in a MySQL database,
Crafty Syntax Live Help (CSLH) 2.14.6 and earlier stores passwords in cleartext in a MySQL database, which allows context-dependent attackers to obtain sensitive information.
nvd