1 results (0.003 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2008-0430 – 360 Web Manager 3.0 - 'IDFM' SQL Injection
https://notcve.org/view.php?id=CVE-2008-0430
23 Jan 2008 — SQL injection vulnerability in form.php in 360 Web Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the IDFM parameter. Vulnerabilidad de inyección SQL en form.php de 360 Web Manager 3.0 permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro IDFM. • https://www.exploit-db.com/exploits/4944 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •