Unrated severityNVD Advisory· Published Apr 28, 2009· Updated Jun 16, 2026
CVE-2008-6761
CVE-2008-6761
Description
Static code injection vulnerability in admin/install.php in Flexcustomer 0.0.6 might allow remote attackers to inject arbitrary PHP code into const.inc.php via the installdbname parameter (aka the Database Name field). NOTE: the installation instructions specify deleting admin/install.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:china-on-site:flexcustomer0.0.6:*:*:*:*:*:*:*:*
- Range: =0.0.6
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.