Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2008-6537

EPSS 3.52% · P88
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-6537

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
LightNEasy/lightneasy.php in LightNEasy No database version 1.2 allows remote attackers to obtain the hash of the administrator password via the setup "do" action to LightNEasy.php, which is cleared from $_GET but later accessed using $_REQUEST.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
LightNEasy 'LightNEasy/lightneasy.php'信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
LightNEasy是一款简单易用的内容管理系统(CMS)。 LightNEasy No数据库1.2版本的LightNEasy/lightneasy.php存在信息泄露漏洞。远程攻击者可以借助对LightNEasy.php的setup "do"操作,且它在$_GET已被情况但可通过运行$_REQUEST来访问,以获得管理员密码的杂乱信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2008-6537

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2008-6537

登录查看更多情报信息。

Same Patch Batch · n/a · 2009-03-30 · 28 CVEs total

CVE-2008-65367-Zip 未明缓冲储存器处理漏洞
CVE-2008-6550Davidbourrier Glossaire 'glossaire.php'跨站脚本攻击漏洞
CVE-2008-6549MoinMoin 'config/multiconfig.py'拒绝服务攻击漏洞
CVE-2008-6548MoinMoin 'parser/text_rst.py'访问控制授权漏洞
CVE-2008-6547FormEncode 'schema.py' 安全绕过漏洞
CVE-2008-6546alecwh phpns 未明漏洞
CVE-2008-6545Comscripts Web Server Creator 'createdb.php'远程文件包含漏洞
CVE-2008-6544Simple Machines Forum 'Sources/Subs-Graphics.php和Sources/Themes.php'远程文件漏洞
CVE-2008-6543Comscripts Quick Classifieds 'DOCUMENT_ROOT'多个远程文件包含漏洞
CVE-2008-6542DotNetNuke 皮肤管理器远程漏洞
CVE-2008-6541DotNetNuke 文件管理模块远程文件上传访问控制漏洞
CVE-2008-6540DotNetNuke 默认'ValidationKey'和 'DecriptionKey' 弱加密漏洞
CVE-2008-6539Holger_Schurig Destar Add User静态代码注入漏洞
CVE-2008-6538Holger_Schurig Destar 'config/add/CfgOptUser'请求访问控制漏洞
CVE-2009-1171Moodle 输入验证错误漏洞
CVE-2007-6721Bouncycastle OpenSSL畸形ASN.1结构处理拒绝服务漏洞
CVE-2009-1170OpenSolaris Module Debugger Process Cross Zone 本地特权升级漏洞
CVE-2009-0115Device Mapper Device Mapper多路径驱动程序权限许可和访问控制漏洞
CVE-2008-6553Impliedbydesign Micro CMS 'microcms-admin-home.php'安全绕过漏洞
CVE-2008-6552Red Hat Cluster Project不安全临时文件创建漏洞

Showing top 20 of 28 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2008-6537

No comments yet

Leave a comment