CVE-2008-5132

2008-11-1811:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.003

Percentile

71.6%

JSON

SQL injection vulnerability in inc/ajax/ajax_rating.php in MemHT Portal 4.0.1 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For HTTP header.

References

osvdb.org/49903

secunia.com/advisories/32632

securityreason.com/securityalert/4608

www.memht.com/news_118_Small-fix-4-0-1.html

www.securityfocus.com/bid/32294

exchange.xforce.ibmcloud.com/vulnerabilities/46610

www.exploit-db.com/exploits/7114