3 matches found
Sql injection
SQL injection vulnerability in index.php in BosDev BosClassifieds allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-1838...
CVE-2008-6526
SQL injection vulnerability in index.php in BosDev BosClassifieds allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-1838...
CVE-2008-1838
The connected data shows a related CVE (CVE-2008-6526) describing a SQL injection in BosDev BosClassifieds: index.php via the cat_id parameter, a vector different from CVE-2008-1838’s cat parameter. This confirms that BosClassifieds 3.0 stores user-supplied input in a way exploitable through SQL,...