VYPR
← All advisories
Unrated severityNVD Advisory· Published Apr 29, 2009· Updated Apr 23, 2026

CVE-2008-6773

CVE-2008-6773

Description

Static code injection vulnerability in user/internettoolbar/edit.php in YourPlace 1.0.2 and earlier allows remote authenticated users to execute arbitrary PHP code into user/internettoolbar/index.php via the (1) fav1_url, (2) fav1_name, (3) fav2_url, (4) fav2_name, (5) fav3_url, (6) fav3_name, (7) fav4_url, (8) fav4_name, (9) fav5_url, or (10) fav5_name parameters.

Affected products

3
  • Peterselie/Yourplace3 versions
    cpe:2.3:a:peterselie:yourplace:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:peterselie:yourplace:*:*:*:*:*:*:*:*range: <=1.0.2
    • cpe:2.3:a:peterselie:yourplace:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:peterselie:yourplace:1.0.1:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.