CVE-2008-1874

CVE-2008-1874

EPSS 0.9%

SQL injection vulnerability in account/user/mail.html in Xpoze Pro 3.05 and earlier allows remote authenticated users to execute arbitrary SQL commands via the reed parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/29700 https://exchange.xforce.ibmcloud.com/vulnerabilities/41656 https://www.exploit-db.com/exploits/5358 http://www.securityfocus.com/bid/28618