1 results (0.001 seconds)
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 2
CVE-2008-2529 – Advanced Links Management (ALM) 1.52 - SQL Injection
https://notcve.org/view.php?id=CVE-2008-2529
SQL injection vulnerability in read.php in Advanced Links Management (ALM) 1.5.2 allows remote attackers to execute arbitrary SQL commands via the catId parameter. Vulnerabilidad de inyección SQL en read.php de Advanced Links Management (ALM) 1.5.2 permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro catId. • https://www.exploit-db.com/exploits/5581 http://www.securityfocus.com/bid/29137 https://exchange.xforce.ibmcloud.com/vulnerabilities/42320 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •