CVE-2008-4616

THE Spanner Spambam Plugin - Improper Input Validation

Title source: rule

Description

The SpamBam plugin for WordPress allows remote attackers to bypass restrictions and add blog comments by using server-supplied values to calculate a shared key.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Romero · perlwebappsphp
https://www.exploit-db.com/exploits/31030

References (4)

Scores

EPSS 0.0400
EPSS Percentile 88.5%

Details

CWE
CWE-20
Status published
Products (2)
the_spanner/spambam_plugin
wordpress/spambam_plugin
Published Oct 20, 2008
Tracked Since Feb 18, 2026