Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4091

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2008-4091
Last Modified 24 Sep 2008 01:41:31
Published 15 Sep 2008 01:12:51
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4091

Summary

SQL injection vulnerability in index.php in Web Directory Script 1.5.3 allows remote attackers to execute arbitrary SQL commands via the site parameter in an open action.

Vulnerable Systems

Application

  • Source Workshop Web Directory Script 1.5.3


References

XF - webdirectoryscript-index-sql-injection(45185)

BID - 30941

SECUNIA - 31629

MILW0RM - 6335


Last Updated: 27 May 2016 10:48:23