Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5841

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-5841
Last Modified 19 Aug 2009 01:22:33
Published 05 Jan 2009 11:30:04
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5841

Summary

Multiple SQL injection vulnerabilities in iGaming 1.5 and earlier allow remote attackers to execute arbitrary SQL commands via the browse parameter to (1) previews.php and (2) reviews.php, and the (3) id parameter to index.php in a viewarticle action.

Vulnerable Systems

Application

  • Igamingcms Igaming Cms 1.3.1

  • Igamingcms Igaming Cms 1.4.2

  • Igamingcms Igaming Cms 1.5


References

XF - igamingcms-previews-sql-injection(45366)

BID - 31340

MILW0RM - 6540

SREASON - 4867


Last Updated: 27 May 2016 10:48:57