CVE-2008-3784

2008-08-2614:06:00

mitre

www.cve.org

8.4 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.9%

JSON

SQL injection vulnerability in scrape.php in BtiTracker 1.4.7 and earlier and xBtiTracker 2.0.542 and earlier allows remote attackers to execute arbitrary SQL commands via the info_hash parameter.

References

secunia.com/advisories/31556

securityreason.com/securityalert/4186

www.btiteam.org/

www.btiteam.org/smf/index.php?topic=12068

www.securityfocus.com/bid/30811

exchange.xforce.ibmcloud.com/vulnerabilities/44627

www.exploit-db.com/exploits/6296