CVE

Id
36354  
CVE No.
CVE-2008-6237  
Status
Candidate  
Description
SQL injection vulnerability in software-description.php in Scripts For Sites (SFS) Hotscripts-like Site allows remote attackers to execute arbitrary SQL commands via the id parameter.  
Phase
Assigned (20090223)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
397704 36354 CVE-2008-6237 MILW0RM:6915  View
397705 36354 CVE-2008-6237 URL:http://www.milw0rm.com/exploits/6915  View
397706 36354 CVE-2008-6237 SECUNIA:32536  View
397707 36354 CVE-2008-6237 URL:http://secunia.com/advisories/32536  View
397708 36354 CVE-2008-6237 XF:hotscriptslikesite-software-sql-injection(46277)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
41841 JVNDB-2009-002848 FlexPHPSite の admin/usercheck.php における SQL インジェクションの脆弱性 FlexPHPSite の admin/usercheck.php には、magic_quotes_gpc が無効になっている際、SQL インジェクションの脆弱性が存在します。 CVE-2008-6241 36354 6.8 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002848.html  View