CVE-2008-3309
CVE-2008-3309 is a SQL injection vulnerability in DigiLeave 1.2 and earlier, exposed via info_book.asp where the book_id parameter is used. The issue allows remote attackers to execute arbitrary SQL commands. The affected component is info_book.asp within DigiLeave, with the root cause being unsa...