CVE-2008-6242

2009-02-2317:00:00

mitre

www.cve.org

8.4 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

28.0%

JSON

SQL injection vulnerability in SearchResults.php in Scripts For Sites (SFS) EZ e-store allows remote attackers to execute arbitrary SQL commands via the where parameter.

References

secunia.com/advisories/32525

www.securityfocus.com/bid/32039

exchange.xforce.ibmcloud.com/vulnerabilities/46273

www.exploit-db.com/exploits/6922