Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6119

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6119
Last Modified 15 Aug 2009 01:17:47
Published 11 Feb 2009 12:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6119

Summary

Static code injection vulnerability in gooplecms/admin/account/action/editpass.php in Goople CMS 1.7 allows remote attackers to inject arbitrary PHP code into admin/userandpass.php via the (1) username and (2) password parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems

Application

  • Goople Cms 1.7


References

XF - gooplecms-editpass-code-execution(46800)

BID - 33848

SECUNIA - 32819


Last Updated: 27 May 2016 10:49:04