CVE-2008-2521

2008-06-0315:00:00

mitre

www.cve.org

7.9 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

38.3%

JSON

SQL injection vulnerability in members.php in YABSoft Mega File Hosting Script (aka MFH or MFHS) 1.2 allows remote authenticated users to execute arbitrary SQL commands via the fid parameter.

References

secunia.com/advisories/30210

www.securityfocus.com/bid/29167

exchange.xforce.ibmcloud.com/vulnerabilities/42355

www.exploit-db.com/exploits/5598