Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6043

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6043
Last Modified 19 Aug 2009 01:22:59
Published 03 Feb 2009 06:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6043

Summary

Multiple SQL injection vulnerabilities in PHP Pro Bid (PPB) 6.04 allow remote attackers to execute arbitrary SQL commands via the (1) order_field and (2) order_type parameters to categories.php and unspecified other components. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Phpprobid Php Pro Bid 6.04


References

BID - 31263

BUGTRAQ - 20080919 PHP pro bid v 6.04 SQL injection

SECUNIA - 31981

OSVDB - 48484


Last Updated: 27 May 2016 10:49:02