Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4886

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-4886
Last Modified 16 Apr 2009 01:33:07
Published 03 Nov 2008 07:57:08
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4886

Summary

SQL injection vulnerability in index.php in YourFreeWorld Shopping Cart Script allows remote attackers to execute arbitrary SQL commands via the c parameter.

Vulnerable Systems

Application

  • Yourfreeworld Shopping Cart Script


References

XF - shoppingcartscript-index-sql-injection(46270)

BID - 32045

MILW0RM - 6952

SREASON - 4539

SECUNIA - 32492

OSVDB - 49598

OSVDB - 49501


Last Updated: 27 May 2016 10:48:39