RSS   Vulnerabilities for 'Flexphpic'   RSS

2009-02-16
 
CVE-2008-6142

 

 
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPic 0.0.4 and FlexPHPic Pro 0.0.3, and other 0.0.x versions, allow remote attackers to execute arbitrary SQL commands via (1) the checkuser parameter (aka username field), or (2) the checkpass parameter (aka password field), to admin/index.php.

 

 >>> Vendor: China-on-site 6 Products
Flexphpnews
Flexphpic
Flexphpsite
Flexphplink
Flexphpdirectory
Flexcustomer0.0.6


Copyright 2024, cxsecurity.com

 

Back to Top