Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4433

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-4433
Last Modified 18 Feb 2009 01:22:31
Published 03 Oct 2008 06:22:45
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4433

Summary

SQL injection vulnerability in search.php in the RMSOFT MiniShop module 1.0 for Xoops might allow remote attackers to execute arbitrary SQL commands via the itemsxpag parameter.

Vulnerable Systems

Application

  • Rmsoft Minishop Module 1.0


References

XF - minishop-search-sql-injection(45714)

MISC - http://lostmon.blogspot.com/2008/08/rmsoft-minishop-module-multiple.html


Last Updated: 27 May 2016 10:48:30