Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1639


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-1639
Last Modified 07 Mar 2011 10:07:23
Published 02 Apr 2008 01:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in index.php in Neat weblog 0.2 allows remote attackers to execute arbitrary SQL commands via the articleId parameter in a show action, probably related to the showArticle function in lib/lib_article.include.php.

Vulnerable Systems


  • Neat Web Neat-web 0.2


XF - neatweblog-index-sql-injection(41555)

VUPEN - ADV-2008-1053

BID - 28534

MILW0RM - 5331

Last Updated: 27 May 2016 10:47:36