CVE-2008-1909

CVE-2008-1909

EPSS 1.0%

SQL injection vulnerability in comment.php in PHP Knowledge Base (PHPKB) 1.5 and 2.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://secunia.com/advisories/29791 https://exchange.xforce.ibmcloud.com/vulnerabilities/41769 https://www.exploit-db.com/exploits/5428 http://www.securityfocus.com/bid/28739