CVE-2008-0516

Name of the Vulnerable Software and Affected Versions SQLiteManager version 1.2.0

Description A remote file inclusion issue allows attackers to execute arbitrary PHP code via a URL in the spaw root parameter. This can be achieved by manipulating the URL to include malicious PHP code, potentially leading to unauthorized access or data compromise.

Recommendations For SQLiteManager version 1.2.0, consider restricting access to the spaw/dialogs/confirm.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the spaw root parameter in URLs until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.