SQL injection vulnerability in index.php in Vacation Rental Script 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a sections action.
References
Configurations
History
21 Nov 2024, 00:49
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/31421 - | |
References | () http://www.securityfocus.com/bid/30626 - Exploit | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/44375 - | |
References | () https://www.exploit-db.com/exploits/6221 - |
Information
Published : 2008-08-12 19:41
Updated : 2024-11-21 00:49
NVD link : CVE-2008-3603
Mitre link : CVE-2008-3603
CVE.ORG link : CVE-2008-3603
JSON object : View
Products Affected
vacation_rentals
- vacation_rental_script
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')