CVE-2008-2263

2008-05-1606:54:00

mitre

www.cve.org

8.4 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

43.6%

JSON

SQL injection vulnerability in linking.page.php in Automated Link Exchange Portal allows remote attackers to execute arbitrary SQL commands via the cat_id parameter. NOTE: linking.page.php is commonly renamed to link.php, links.php, etc.

References

secunia.com/advisories/30243

www.securityfocus.com/bid/29205

exchange.xforce.ibmcloud.com/vulnerabilities/42401

www.exploit-db.com/exploits/5611