Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1936


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-1936
Last Modified 07 Mar 2011 10:08:16
Published 25 Apr 2008 02:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in index.php in Classifieds Caffe allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in an add action. NOTE: this issue might be site-specific.

Vulnerable Systems


  • Classifieds Caffe


VUPEN - ADV-2008-1240

BID - 28800

BUGTRAQ - 20080416 Classifieds Caffe (index.php cat_id) Remote SQL Injection

MILW0RM - 5450

XF - classifiedcaffe-index-sql-injection(42121)

Last Updated: 27 May 2016 10:47:42