CVE-2008-6120

SQL injection vulnerability in profile_comments.php in SocialEngine (SE) 2.7 and earlier allows remote attackers to execute arbitrary SQL commands via the comment_secure parameter.
Configurations

Configuration 1

cpe:2.3:a:socialengine:socialengine:2.0:bta_online:*:*:*:*:*:*
cpe:2.3:a:socialengine:socialengine:2.4:se:*:*:*:*:*:*
cpe:2.3:a:socialengine:socialengine:1.4:*:*:*:*:*:*:*
cpe:2.3:a:socialengine:socialengine:1.6:*:*:*:*:*:*:*
cpe:2.3:a:socialengine:socialengine:1.0:*:*:*:*:*:*:*
cpe:2.3:a:socialengine:socialengine:2.1:*:*:*:*:*:*:*
cpe:2.3:a:socialengine:socialengine:1.7:*:*:*:*:*:*:*
cpe:2.3:a:socialengine:socialengine:1.1:*:*:*:*:*:*:*
cpe:2.3:a:socialengine:socialengine:*:*:*:*:*:*:*:*
cpe:2.3:a:socialengine:socialengine:2.0:*:*:*:*:*:*:*
cpe:2.3:a:socialengine:socialengine:1.8:*:*:*:*:*:*:*

Information

Published : 2009-02-11 05:30

Updated : 2017-08-08 01:33


NVD link : CVE-2008-6120

Mitre link : CVE-2008-6120

Products Affected
No products.
CWE