← back
CVE-2008-1631

CVE-2008-1631

EPSS 1.1%
SQL injection vulnerability in login.php in CuteFlow 1.5.0 and 2.10.0 allows remote attackers to execute arbitrary SQL commands via the UserId parameter, related to the login form field in index.php.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/29612http://securityreason.com/securityalert/3792https://exchange.xforce.ibmcloud.com/vulnerabilities/41544http://www.securityfocus.com/archive/1/490305/100/0/threaded