CVE-2008-4605

2008-10-1722:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.002

Percentile

58.5%

JSON

SQL injection vulnerability in CafeEngine allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) dish.php and (2) menu.php.

References

secunia.com/advisories/32308

securityreason.com/securityalert/4434

www.securityfocus.com/bid/31786

exchange.xforce.ibmcloud.com/vulnerabilities/45929

www.exploit-db.com/exploits/6762