Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4092

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-4092
Last Modified 07 Mar 2011 10:11:55
Published 15 Sep 2008 01:12:51
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4092

Summary

SQL injection vulnerability in printfeature.php in myPHPNuke (MPN) before 1.8.8_8rc2 allows remote attackers to execute arbitrary SQL commands via the artid parameter.

Vulnerable Systems

Application

  • Myphpnuke 1.8.8 7

  • Myphpnuke 1.8.8 8


References

XF - myphpnuke-printfeature-sql-injection(44798)

VUPEN - ADV-2008-2469

BID - 30959

MILW0RM - 6347

MISC - http://websecurity.com.ua/2398/

SREASON - 4261


Last Updated: 27 May 2016 10:48:23