Unrated severityNVD Advisory· Published Feb 25, 2009· Updated Apr 23, 2026

CVE-2008-6274

Description

Multiple SQL injection vulnerabilities in index.php in FamilyProject 2.0 allow remote attackers to execute arbitrary SQL commands via (1) the logmbr parameter (aka login field) or (2) the mdpmbr parameter (aka pass or "Mot de passe" field). NOTE: some of these details are obtained from third party information.

Affected products

Mjcreation/Familyproject
cpe:2.3:a:mjcreation:familyproject:2.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/32900nvdVendor Advisory
osvdb.org/50314nvd
www.securityfocus.com/bid/32501nvd
exchange.xforce.ibmcloud.com/vulnerabilities/46929nvd
www.exploit-db.com/exploits/7248nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000