CVE-2008-3953

SQL injection vulnerability in keyword_search_action.php in Vastal I-Tech Shaadi Zone 1.0.9 allows remote attackers to execute arbitrary SQL commands via the tage parameter.
Configurations

Configuration 1 (hide)

cpe:2.3:a:vastal:shaadi_zone:1.0.9:*:*:*:*:*:*:*

History

21 Nov 2024, 00:50

Type Values Removed Values Added
References () http://securityreason.com/securityalert/4232 - () http://securityreason.com/securityalert/4232 -
References () http://www.securityfocus.com/bid/31039 - () http://www.securityfocus.com/bid/31039 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/44947 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/44947 -
References () https://www.exploit-db.com/exploits/6385 - () https://www.exploit-db.com/exploits/6385 -

Information

Published : 2008-09-11 01:13

Updated : 2024-11-21 00:50


NVD link : CVE-2008-3953

Mitre link : CVE-2008-3953

CVE.ORG link : CVE-2008-3953


JSON object : View

Products Affected

vastal

  • shaadi_zone
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')