VYPR
Unrated severityNVD Advisory· Published Feb 11, 2009· Updated Jun 16, 2026

CVE-2008-6120

CVE-2008-6120

Description

SQL injection vulnerability in profile_comments.php in SocialEngine (SE) 2.7 and earlier allows remote attackers to execute arbitrary SQL commands via the comment_secure parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

12
  • cpe:2.3:a:socialengine:socialengine:*:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:a:socialengine:socialengine:*:*:*:*:*:*:*:*range: <=2.7
    • cpe:2.3:a:socialengine:socialengine:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:socialengine:socialengine:1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:socialengine:socialengine:1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:socialengine:socialengine:1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:socialengine:socialengine:1.7:*:*:*:*:*:*:*
    • cpe:2.3:a:socialengine:socialengine:1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:socialengine:socialengine:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:socialengine:socialengine:2.0:bta_online:*:*:*:*:*:*
    • cpe:2.3:a:socialengine:socialengine:2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:socialengine:socialengine:2.4:se:*:*:*:*:*:*
    • (no CPE)range: <=2.7

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.