Return to CVE list

CVE-2008-1425

7.5
Critical

CVE-2008-1425

cve@mitre.org
Modified
View on MITREFind on GitHub

Description

SQL injection vulnerability in index.php in the gallery module in Easy-Clanpage 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a kate action.

Exploits

52752008-03-18webappsPHP

Easy-Clanpage 2.2 - 'id' SQL Injection

By n3w7u
119642010-03-30webappsMultiple

Easy-Clanpage 2.1 - SQL Injection

By Easy Laster

References

cve@mitre.org
http://secunia.com/advisories/29430
cve@mitre.org
http://www.securityfocus.com/bid/28309
cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/41303
cve@mitre.org
https://www.exploit-db.com/exploits/5275
af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/29430
af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/28309
af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/41303
af854a3a-2127-422b-91ae-364da2661108
https://www.exploit-db.com/exploits/5275