Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4624

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-4624
Last Modified 07 Mar 2011 10:12:46
Published 20 Oct 2008 09:18:02
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4624

Summary

PHP remote file inclusion vulnerability in init.php in Fast Click SQL Lite 1.1.7, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the CFG[CDIR] parameter.

Vulnerable Systems

Application

  • Ftrsoft Fast Click Sql Lite 1.1.7


References

XF - fastclick-init-file-include(45964)

VUPEN - ADV-2008-2861

BID - 31817

MILW0RM - 6785

SREASON - 4454

SECUNIA - 32328


Last Updated: 27 May 2016 10:48:34