CVE-2008-5804

SQL injection vulnerability in admin/admin_catalog.php in e-topbiz Number Links 1 Php Script allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit action.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 42%
Common Weakness Enumeration
References
http://secunia.com/advisories/32639
http://securityreason.com/securityalert/4828
http://www.securityfocus.com/bid/32198
https://exchange.xforce.ibmcloud.com/vulnerabilities/46485
https://www.exploit-db.com/exploits/7050
http://secunia.com/advisories/32639
http://securityreason.com/securityalert/4828
http://www.securityfocus.com/bid/32198
https://exchange.xforce.ibmcloud.com/vulnerabilities/46485
https://www.exploit-db.com/exploits/7050