Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6776

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6776
Last Modified 01 May 2009 12:00:00
Published 01 May 2009 01:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6776

Summary

SQL injection vulnerability in viewcomments.php in Scripts For Sites (SFS) EZ Hot or Not allows remote attackers to execute arbitrary SQL commands via the phid parameter.

Vulnerable Systems

Application

  • Scripts-for-sites Ez Hot Or Not


References

XF - ezhotornot-viewcomments-sql-injection(46278)

MILW0RM - 6914

SECUNIA - 32532

OSVDB - 49540


Last Updated: 27 May 2016 10:49:20