Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2453

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-2453
Last Modified 05 Sep 2008 12:00:00
Published 27 May 2008 10:32:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2453

Summary

Multiple SQL injection vulnerabilities in PHP Classifieds Script allow remote attackers to execute arbitrary SQL commands via the fatherID parameter to (1) browse.php and (2) search.php.

Vulnerable Systems

Application

  • Phpclassifiedsscript Php Classifieds Script


References

XF - phpclassifiedsscript-fatherid-sql-injection(42380)

BID - 29169

MILW0RM - 5599

SECUNIA - 30209


Last Updated: 27 May 2016 10:47:52