Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5653

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-5653
Last Modified 24 Dec 2008 12:00:00
Published 17 Dec 2008 01:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5653

Summary

SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft AjaxPortal 3.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Myiosoft.com Ajaxportal 3.0


References

BID - 32199

SECUNIA - 32673

OSVDB - 49700

MILW0RM - 7044


Last Updated: 27 May 2016 10:48:52