← back
CVE-2008-6274

CVE-2008-6274

EPSS 1.0%
Multiple SQL injection vulnerabilities in index.php in FamilyProject 2.0 allow remote attackers to execute arbitrary SQL commands via (1) the logmbr parameter (aka login field) or (2) the mdpmbr parameter (aka pass or "Mot de passe" field). NOTE: some of these details are obtained from third party information.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/50314http://secunia.com/advisories/32900https://exchange.xforce.ibmcloud.com/vulnerabilities/46929https://www.exploit-db.com/exploits/7248http://www.securityfocus.com/bid/32501