CVE-2008-3495 – Pcshey Portal - 'kategori.asp' SQL Injection

https://notcve.org/view.php?id=CVE-2008-3495

SQL injection vulnerability in kategori.asp in Pcshey Portal allows remote attackers to execute arbitrary SQL commands via the kid parameter. Vulnerabilidad de inyección SQL en kategori.asp de Pcshey Portal permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro kid. • https://www.exploit-db.com/exploits/32151 http://downloads.securityfocus.com/vulnerabilities/exploits/30534.pl http://www.securityfocus.com/bid/30534 https://exchange.xforce.ibmcloud.com/vulnerabilities/44213 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •