Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4627

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-4627
Last Modified 29 Oct 2012 11:17:51
Published 20 Oct 2008 09:18:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4627

Summary

SQL injection vulnerability in the rGallery plugin 1.09 for WoltLab Burning Board (WBB) allows remote attackers to execute arbitrary SQL commands via the itemID parameter in the RGalleryImageWrapper page in index.php.

Vulnerable Systems

Application

  • Rgallery Plugin 1.09


References

BID - 31820

MILW0RM - 6790

SREASON - 4443

SECUNIA - 32323

XF - rgallery-index-sql-injection(45966)


Last Updated: 27 May 2016 10:49:43