CVE-2008-6525 Information

Description

SQL injection vulnerability in the Admin Panel in Nice PHP FAQ Script (Knowledge base Script) allows remote attackers to execute arbitrary SQL commands via the Password parameter (aka the pass field).

Reference

http://www.securityfocus.com/bid/32150 https://exchange.xforce.ibmcloud.com/vulnerabilities/46402 https://www.exploit-db.com/exploits/7018