Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2135

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-2135
Last Modified 29 Jan 2009 01:49:20
Published 09 May 2008 02:20:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2135

Summary

Multiple SQL injection vulnerabilities in VisualShapers ezContents 2.0.0 allow remote attackers to execute arbitrary SQL commands via the (1) contentname parameter to showdetails.php and the (2) article parameter to printer.php.

Vulnerable Systems

Application

  • Visualshapers Ezcontents 2.0.0


References

XF - ezcontents-showdetails-sql-injection(42260)

BID - 29098

BUGTRAQ - 20080508 ezContents CMS Version 2.0.0 SQL Injection Vulnerabilities

MILW0RM - 5559

SREASON - 3865


Last Updated: 27 May 2016 10:47:46