Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2263


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-2263
Last Modified 01 Apr 2009 01:31:44
Published 16 May 2008 08:54:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in in Automated Link Exchange Portal allows remote attackers to execute arbitrary SQL commands via the cat_id parameter. NOTE: is commonly renamed to link.php, links.php, etc.

Vulnerable Systems


  • Cmsnx Automated Link Exchange Portal


XF - automatedlinkexchange-catid-sql-injection(42401)

BID - 29205

MILW0RM - 5611

SECUNIA - 30243

Last Updated: 27 May 2016 10:47:48