← voltar
CVE-2008-4178

CVE-2008-4178

EPSS 3.4%
SQL injection vulnerability in tr.php in DownlineGoldmine Special Category Addon, Downline Builder Pro, New Addon, and Downline Goldmine Builder allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information.
Produtos afetados
n/a · n/a
PoCs públicas encontradas7
cve_referencepacketstorm.linuxsecurity.com/0809-exploits/categoryaddon-sql.txtnão verificadocve_referencepacketstorm.linuxsecurity.com/0809-exploits/downline-sql.txtnão verificadocve_referencepacketstormsecurity.org/0809-exploits/newdownline-sql.txtnão verificadocve_referencewww.exploit-db.com/exploits/6946não verificadocve_referencewww.exploit-db.com/exploits/6947não verificadocve_referencewww.exploit-db.com/exploits/6951não verificadocve_referencewww.exploit-db.com/exploits/6950não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://packetstorm.linuxsecurity.com/0809-exploits/categoryaddon-sql.txthttp://packetstorm.linuxsecurity.com/0809-exploits/downline-sql.txthttp://packetstormsecurity.org/0809-exploits/newdownline-sql.txthttp://secunia.com/advisories/31812https://exchange.xforce.ibmcloud.com/vulnerabilities/45128https://www.exploit-db.com/exploits/6946https://www.exploit-db.com/exploits/6947https://www.exploit-db.com/exploits/6950https://www.exploit-db.com/exploits/6951http://www.securityfocus.com/bid/31169http://www.vupen.com/english/advisories/2008/2992http://www.vupen.com/english/advisories/2008/2993