Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4766


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-4766
Last Modified 28 Oct 2008 12:00:00
Published 27 Oct 2008 10:03:38
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in member.php in Oxygen Bulletin Board 1.1.3 allows remote attackers to execute arbitrary SQL commands via the member parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems


  • O2php Oxygen Bulletin Board 1.0.11

  • O2php Oxygen Bulletin Board 1.1

  • O2php Oxygen Bulletin Board 1.1.1

  • O2php Oxygen Bulletin Board 1.1.2

  • O2php Oxygen Bulletin Board 1.1.3


XF - oxygenbulletinboard-member-sql-injection(41703)


BID - 28651

Last Updated: 27 May 2016 10:48:36