CVE-2008-2790

2008-06-2010:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.001

Percentile

37.5%

JSON

SQL injection vulnerability in detail.php in MountainGrafix easyTrade 2.x allows remote attackers to execute arbitrary SQL commands via the id parameter.

References

secunia.com/advisories/30673

shop.mountaingrafix.at/media/patches/etv_patch_2_3_2.zip

www.securityfocus.com/bid/29775

exchange.xforce.ibmcloud.com/vulnerabilities/43152

www.exploit-db.com/exploits/5840