CVE-2008-1314

2008-03-1217:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.001

Percentile

29.2%

JSON

SQL injection vulnerability in the Johannes Hass gaestebuch 2.2 module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit action to modules.php.

References

cod3rz.helloweb.eu/exploits/gaestebuch.txt

marc.info/?l=bugtraq&m=120440053123054&w=2

www.securityfocus.com/bid/28063

exchange.xforce.ibmcloud.com/vulnerabilities/40975