Vulnerabilities (CVE)

Filtered by vendor China-on-site Subscribe
Filtered by product Flexphpsite
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6241 1 China-on-site 1 Flexphpsite 2024-11-21 6.8 MEDIUM N/A
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPSite 0.0.1 and 0.0.7, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the checkuser parameter (aka username field), or (2) the checkpass parameter (aka password field), to admin/index.php.