CVE-2008-4348

CVE-2008-4348

EPSS 1.1%

SQL injection vulnerability in photo.php in PHPortfolio, possibly 1.3, allows remote attackers to execute arbitrary SQL commands via the id parameter.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://packetstormsecurity.org/0809-exploits/phpportfolio-sql.txt http://secunia.com/advisories/31828 https://exchange.xforce.ibmcloud.com/vulnerabilities/45078 http://www.securityfocus.com/bid/31143