Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6525

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6525
Last Modified 05 Oct 2009 12:00:00
Published 25 Mar 2009 02:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6525

Summary

SQL injection vulnerability in the Admin Panel in Nice PHP FAQ Script (Knowledge base Script) allows remote attackers to execute arbitrary SQL commands via the Password parameter (aka the pass field).

Vulnerable Systems

Application

  • Nicephpscripts Nice Php Faq Script


References

XF - nicephpfaq-unspecified-sql-injection(46402)

BID - 32150

MILW0RM - 7018


Last Updated: 27 May 2016 10:49:14