Vulnerability Description
SQL injection vulnerability in the showjavatopic function in func.php in PHP infoBoard V.7 Plus allows remote attackers to execute arbitrary SQL commands via the idcat parameter to showtopic.php.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cannot | Php Infoboard | v.7 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/31977
- http://www.securityfocus.com/bid/31405Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45440
- https://www.exploit-db.com/exploits/6566
- http://secunia.com/advisories/31977
- http://www.securityfocus.com/bid/31405Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45440
- https://www.exploit-db.com/exploits/6566
FAQ
What is CVE-2008-4332?
CVE-2008-4332 is a vulnerability with a CVSS score of 7.5 (HIGH). SQL injection vulnerability in the showjavatopic function in func.php in PHP infoBoard V.7 Plus allows remote attackers to execute arbitrary SQL commands via the idcat parameter to showtopic.php.
How severe is CVE-2008-4332?
CVE-2008-4332 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-4332?
Check the references section above for vendor advisories and patch information. Affected products include: Cannot Php Infoboard.