1 results (0.001 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2008-2529 – Advanced Links Management (ALM) 1.52 - SQL Injection
https://notcve.org/view.php?id=CVE-2008-2529
03 Jun 2008 — SQL injection vulnerability in read.php in Advanced Links Management (ALM) 1.5.2 allows remote attackers to execute arbitrary SQL commands via the catId parameter. Vulnerabilidad de inyección SQL en read.php de Advanced Links Management (ALM) 1.5.2 permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro catId. • https://www.exploit-db.com/exploits/5581 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •