2 matches found
CVE-2008-2521
The CVE describes a SQL injection in the YABSoft Mega File Hosting Script (MFH/MFHS) version 1.2, specifically in members.php, where the fid parameter can be manipulated by remote authenticated users to execute arbitrary SQL commands. The entry is supported by multiple sources (NVD, CVE lists, an...
CVE-2008-2521
creationtimestamp| type| source ---|---|--- 2008-05-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5598...