CVE-2008-6142

2009-02-16T17:30:00
ID CVE-2008-6142
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:32:00

Description

Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPic 0.0.4 and FlexPHPic Pro 0.0.3, and other 0.0.x versions, allow remote attackers to execute arbitrary SQL commands via (1) the checkuser parameter (aka username field), or (2) the checkpass parameter (aka password field), to admin/index.php.