Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5088

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-5088
Last Modified 29 Jan 2009 01:58:15
Published 14 Nov 2008 02:20:53
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5088

Summary

Multiple SQL injection vulnerabilities in PHPKB Knowledge Base Software 1.5 Professional allow remote attackers to execute arbitrary SQL commands via the ID parameter to (1) email.php and (2) question.php, a different vector than CVE-2008-1909.

Vulnerable Systems

Application

  • Knowledgebase-script Phpkb Knowledge Base Software 1.5


References

BID - 31279

MILW0RM - 6510

SREASON - 4599


Last Updated: 27 May 2016 10:48:42