Return to CVE list

CVE-2008-1508

7.5
Critical

CVE-2008-1508

cve@mitre.org
Modified
View on MITREFind on GitHub

Description

SQL injection vulnerability in EfesTech E-Kontör and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Exploits

314762008-03-24webappsPHP

Efestech E-Kontor - 'id' SQL Injection

By RMx

References

cve@mitre.org
http://secunia.com/advisories/29499
cve@mitre.org
http://securityreason.com/securityalert/3776
cve@mitre.org
http://www.securityfocus.com/archive/1/489989/100/0/threaded
cve@mitre.org
http://www.securityfocus.com/bid/28412
cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/41419
af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/29499
af854a3a-2127-422b-91ae-364da2661108
http://securityreason.com/securityalert/3776
af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/489989/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/28412
af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/41419