Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6525


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6525
Last Modified 05 Oct 2009 12:00:00
Published 25 Mar 2009 02:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in the Admin Panel in Nice PHP FAQ Script (Knowledge base Script) allows remote attackers to execute arbitrary SQL commands via the Password parameter (aka the pass field).

Vulnerable Systems


  • Nicephpscripts Nice Php Faq Script


XF - nicephpfaq-unspecified-sql-injection(46402)

BID - 32150

MILW0RM - 7018

Last Updated: 27 May 2016 10:49:14