Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6446

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6446
Last Modified 10 Mar 2009 12:00:00
Published 09 Mar 2009 10:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6446

Summary

Static code injection vulnerability in the Guestbook component in CMS MAXSITE allows remote attackers to inject arbitrary PHP code into the guestbook via the message parameter.

Vulnerable Systems

Application

  • Geniuscyber Maxsite -


References

XF - guestbook-index-command-execution(47025)

BID - 32588

MILW0RM - 7322


Last Updated: 27 May 2016 10:49:12