RSS   Vulnerabilities for 'Flexcustomer0.0.6'   RSS

2009-04-28
 
CVE-2008-6761

 

 
Static code injection vulnerability in admin/install.php in Flexcustomer 0.0.6 might allow remote attackers to inject arbitrary PHP code into const.inc.php via the installdbname parameter (aka the Database Name field). NOTE: the installation instructions specify deleting admin/install.php.

 

 >>> Vendor: China-on-site 6 Products
Flexphpnews
Flexphpic
Flexphpsite
Flexphplink
Flexphpdirectory
Flexcustomer0.0.6


Copyright 2024, cxsecurity.com

 

Back to Top