CVE-2008-0173 in Ubuntu

CVE-2008-0173

Priority

Description

SQL injection vulnerability in Gforge 4.6.99 and earlier allows remote
attackers to execute arbitrary SQL commands via unspecified parameters,
related to RSS exports.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0173

Bugs

https://bugs.launchpad.net/ubuntu/+source/gforge/+bug/182809

Notes

jdstrand

from Debian "Requires register_globals to be On"

Package

Source: gforge (LP Ubuntu Debian)

Upstream:	released (4.6.99+svn6347-1)
Ubuntu 22.04 LTS (Jammy Jellyfish):	not-affected

Patches:

Vendor:

http://www.debian.org/security/2008/dsa-1459

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2022-02-10 23:30:17 UTC (commit acb3d89ab51f1d5e5543fa993969c0eb13c71f04)