Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6623

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6623
Last Modified 07 Apr 2009 12:00:00
Published 06 Apr 2009 05:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6623

Summary

SQL injection vulnerability in getin.php in WEBBDOMAIN Post Card (aka Web Postcards) 1.02 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.

Vulnerable Systems

Application

  • Webbdomain Post Card 1.01

  • Webbdomain Post Card 1.02


References

XF - postcard-getin-sql-injection(46359)

BID - 32108

MILW0RM - 6989

SECUNIA - 32494

OSVDB - 49824


Last Updated: 27 May 2016 10:49:16