CVE-2008-6665

Severity CVSS v4.0:
Pending analysis
Type:
CWE-94 Code Injection
Publication date:
08/04/2009
Last modified:
09/04/2025

Description

change.php in Ananta CMS 1.0b5, with magic_quotes_gpc disabled, allows remote attackers to gain administrator privileges via a crafted email parameter, possibly related to code injection.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:anantasoft:ananta_cms:1.0b5:*:*:*:*:*:*:*