Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6069


Vulnerability Score 6.8 6.8
CVE Id CVE-2008-6069
Last Modified 08 Apr 2009 01:33:54
Published 10 Feb 2009 01:59:34
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



SQL injection vulnerability in e107chat.php in the eChat plugin 4.2 for e107, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the nick parameter.

Vulnerable Systems


  • 123flashchat Echat Plugin 4.2


XF - echat-e107chat-sql-injection(42883)

BUGTRAQ - 20080605 e107 Plugin echat MENU Blind SQL Injection Vulnerability

SECUNIA - 30561

Last Updated: 27 May 2016 10:49:02