NotCVE - vendor:"Knowledgebase-script" product:"Phpkb Knowledge Base Software"

1 results (0.003 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 3

CVE-2008-5088 – PHPKB 1.5 Professional - Multiple SQL Injections

https://notcve.org/view.php?id=CVE-2008-5088

Multiple SQL injection vulnerabilities in PHPKB Knowledge Base Software 1.5 Professional allow remote attackers to execute arbitrary SQL commands via the ID parameter to (1) email.php and (2) question.php, a different vector than CVE-2008-1909. Múltiples vulnerabilidades de inyección SQL en PHPKB Knowledge Base Software v1.5 Professional permiten a atacantes remotos ejecutar comandos SQL de su elección a tra´ves del parámetro "ID" de (1) email.php y (2) question.php, un vector diferente que CVE-2008-1909. • https://www.exploit-db.com/exploits/6510 https://www.exploit-db.com/exploits/12561 http://securityreason.com/securityalert/4599 http://www.securityfocus.com/bid/31279 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •