Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6390


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6390
Last Modified 03 Mar 2009 12:00:00
Published 02 Mar 2009 02:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in login.asp in Ocean12 Membership Manager Pro allows remote attackers to execute arbitrary SQL commands via the Password parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems


  • Ocean12tech Membership Manager Pro -


XF - membershipmanager-login-sql-injection(46959)

OSVDB - 50318

MILW0RM - 7254

SECUNIA - 32893

Last Updated: 27 May 2016 10:49:10