Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2572

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-2572
Last Modified 29 Jan 2009 01:50:38
Published 06 Jun 2008 02:32:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2572

Summary

SQL injection vulnerability in php/leer_comentarios.php in FlashBlog allows remote attackers to execute arbitrary SQL commands via the articulo_id parameter.

Vulnerable Systems

Application

  • Theflashblog Flashblog


References

XF - flashblog-leercomentarios-sql-injection(43040)

BUGTRAQ - 20080529 Flash Blog Sql Injection

MILW0RM - 5685

SREASON - 3927


Last Updated: 27 May 2016 10:47:54