Filtered by vendor China-on-site Subscriptions
Filtered by product Flexcustomer0.0.6 Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2008-6761 1 China-on-site 1 Flexcustomer0.0.6 2024-11-21 N/A
Static code injection vulnerability in admin/install.php in Flexcustomer 0.0.6 might allow remote attackers to inject arbitrary PHP code into const.inc.php via the installdbname parameter (aka the Database Name field). NOTE: the installation instructions specify deleting admin/install.php.