Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6326


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6326
Last Modified 27 Feb 2009 12:00:00
Published 27 Feb 2009 06:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in login.php in Simple Customer as downloaded on 20081118 allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems


  • Simplecustomer Simple Customer -


XF - simplecustomer-login-sql-injection(46675)

OSVDB - 49916

SECUNIA - 32727

Last Updated: 27 May 2016 10:49:09