CVE-2008-6776

CVE-2008-6776

EPSS 1.0%

SQL injection vulnerability in viewcomments.php in Scripts For Sites (SFS) EZ Hot or Not allows remote attackers to execute arbitrary SQL commands via the phid parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://osvdb.org/49540 http://secunia.com/advisories/32532 https://exchange.xforce.ibmcloud.com/vulnerabilities/46278 https://www.exploit-db.com/exploits/6914