Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7180

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-7180
Last Modified 01 Oct 2009 12:00:00
Published 08 Sep 2009 06:30:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-7180

Summary

del_query1.php in Telephone Directory 2008 allows remote attackers to delete arbitrary contacts via a direct request with a modified id variable.

Vulnerable Systems

Application

  • Rittwick Banerjee Telephone Directory 2008


References

XF - telephonedirectory2008-id-weak-security(42973)

MILW0RM - 5769


Last Updated: 27 May 2016 10:49:30