CVE-2008-3719

2008-08-2016:00:00

mitre

www.cve.org

AI Score

8.3

Confidence

Low

EPSS

0.001

Percentile

37.5%

JSON

SQL injection vulnerability in directory.php in SFS Affiliate Directory allows remote attackers to execute arbitrary SQL commands via the id parameter in a deadlink action.

References

packetstorm.linuxsecurity.com/0808-exploits/affildir-sql.txt

secunia.com/advisories/31537

www.securityfocus.com/bid/30741

exchange.xforce.ibmcloud.com/vulnerabilities/44536

www.exploit-db.com/exploits/6270