Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6372


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6372
Last Modified 15 Aug 2009 01:18:11
Published 02 Mar 2009 02:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in default.asp in Ocean12 FAQ Manager Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter in a Cat action. NOTE: some of these details are obtained from third party information.

Vulnerable Systems


  • Ocean12tech Faq Manager Pro 1.0


XF - faqmanager-default-sql-injection(46945)

BID - 32524

MILW0RM - 7271

SECUNIA - 32930

Last Updated: 27 May 2016 10:49:10