2 matches found
CVE-2008-4145
CVE-2008-4145 describes an SQL injection in Addalink 1.0 beta 4 and earlier, exploitable when magic_quotes_gpc is disabled. The vulnerability affects user_read_links.php via the category_id parameter, allowing remote command execution with partial confidentiality, integrity, and availability impa...
CVE-2008-4145
SQL injection vulnerability in userreadlinks.php in Addalink 1.0 beta 4 and earlier, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the categoryid parameter...