关键漏洞信息 CVE信息 CVE编号: CVE-2008-6078 CVSS 2.0 Base Score: 7.5 CVSS 2.0 Temporal Score: 7.1 Vector: Network Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial Exploitability: High Remediation Level: Unavailable Report Confidence: Uncorroborated 漏洞详情 Title: Limbo CMS open.php SQL Injection Vulnerability Consequences: Data Manipulation Remedy: No remedy available as of September 1, 2014 受影响产品 Product: Limbo CMS 参考链接 Limbo CMS Portal Web site BID-31837 CVE-2008-6078 OSVDB ID: 51863 覆盖范围 Coverage: SQL Injection (PAM) Date: Jun 12, 2007 漏洞描述 该漏洞存在于Limbo CMS的open.php文件中,允许攻击者通过SQL注入进行数据操纵,且在2014年9月1日时无可用修复方案,具有较高的利用可能性和低复杂度。