{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-23T00:38:41.431","vulnerabilities":[{"cve":{"id":"CVE-2008-6814","sourceIdentifier":"cve@mitre.org","published":"2009-05-28T14:30:00.233","lastModified":"2026-06-16T23:03:01.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Unrestricted file upload vulnerability in image_upload.php in the SimpleBoard (com_simpleboard) component 1.0.1 and earlier for Mambo allows remote attackers to execute arbitrary code by uploading a file with an executable extension and an image/jpeg content type, then accessing this file via a direct request to the file in components/com_simpleboard/, a different vulnerability than CVE-2006-3528."},{"lang":"es","value":"Vulnerabilidad de envío de archivo no restringido en image_upload.php en el componente SimpleBoard (com_simpleboard) v1.0.1 y anteriores para Mambo permite a atacantes remotos ejecutar código de su elección mediante la subida de un fichero con extensión ejecutable y un contenido de tipo image/jpeg, para posteriormente acceder al fichero mediante una petición directa en components/com_simpleboard/, una vulnerabilidad diferente a CVE-2006-3528."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:jan_de_graaff:com_simpleboard:*:*:*:*:*:*:*:*","versionEndIncluding":"1.0.1","matchCriteriaId":"214C71D6-216D-4F39-96E7-E002967A1A1D"},{"vulnerable":true,"criteria":"cpe:2.3:a:jan_de_graaff:com_simpleboard:0.9:*:*:*:*:*:*:*","matchCriteriaId":"C2522DB6-DFCA-4CC9-BC2E-673FE5C0AA84"},{"vulnerable":true,"criteria":"cpe:2.3:a:jan_de_graaff:com_simpleboard:0.9.1:*:*:*:*:*:*:*","matchCriteriaId":"1845E826-71C0-4E1F-AE6E-D2F3CD8A6C14"},{"vulnerable":true,"criteria":"cpe:2.3:a:jan_de_graaff:com_simpleboard:0.9.2:*:*:*:*:*:*:*","matchCriteriaId":"995C878F-CEAC-4D55-A9B7-B34B69820ABD"},{"vulnerable":true,"criteria":"cpe:2.3:a:jan_de_graaff:com_simpleboard:1.0:rc1:*:*:*:*:*:*","matchCriteriaId":"C0DABF8C-4226-4101-B6BF-DBF50CF7E724"},{"vulnerable":true,"criteria":"cpe:2.3:a:jan_de_graaff:com_simpleboard:1.0:rc2:*:*:*:*:*:*","matchCriteriaId":"E77F6D71-DDB0-4FC6-8882-2BA75FA3C728"},{"vulnerable":true,"criteria":"cpe:2.3:a:jan_de_graaff:com_simpleboard:1.0:rc3:*:*:*:*:*:*","matchCriteriaId":"7B05EA3B-4AEB-45CB-BDEC-6AAA6A1C2492"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:mambo:mambo:*:*:*:*:*:*:*:*","matchCriteriaId":"6A453A9F-12E9-40FC-8C42-D80C780154E2"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/31981","source":"cve@mitre.org","tags":["Exploit"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/46223","source":"cve@mitre.org"},{"url":"https://www.exploit-db.com/exploits/6868","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/31981","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/46223","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.exploit-db.com/exploits/6868","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}