Return to CVE list

CVE-2008-4039

7.5
Critical

CVE-2008-4039

cve@mitre.org
Modified
View on MITREFind on GitHub

Description

SQL injection vulnerability in index.php in Spice Classifieds allows remote attackers to execute arbitrary SQL commands via the cat_path parameter.

Exploits

63542008-09-03webappsPHP

Spice Classifieds - 'cat_path' SQL Injection

By InjEctOr5

References

cve@mitre.org
http://secunia.com/advisories/31664
cve@mitre.org
http://securityreason.com/securityalert/4237
cve@mitre.org
http://www.securityfocus.com/bid/30985
cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/44859
cve@mitre.org
https://www.exploit-db.com/exploits/6354
af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/31664
af854a3a-2127-422b-91ae-364da2661108
http://securityreason.com/securityalert/4237
af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/30985
af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/44859
af854a3a-2127-422b-91ae-364da2661108
https://www.exploit-db.com/exploits/6354