SQL injection vulnerability in secciones/tablon/tablon.php in WebCMS Portal Edition allows remote attackers to execute arbitrary SQL commands via the id parameter to portal/index.php in a tablon action. NOTE: some of these details are obtained from third party information.
References
Configurations
History
21 Nov 2024, 00:48
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/31047 - Vendor Advisory | |
References | () http://securityreason.com/securityalert/4009 - | |
References | () http://www.securityfocus.com/bid/30204 - Exploit | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/43739 - | |
References | () https://www.exploit-db.com/exploits/6056 - |
Information
Published : 2008-07-18 15:13
Updated : 2024-11-21 00:48
NVD link : CVE-2008-3213
Mitre link : CVE-2008-3213
CVE.ORG link : CVE-2008-3213
JSON object : View
Products Affected
webcms
- webcms_portal_edition
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')