CVE-2008-0422 Information

Feb 14, 2021 cve

Description

SQL injection vulnerability in mail.php in boastMachine (aka bMachine) 3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Reference

http://securityreason.com/securityalert/3563 http://www.securityfocus.com/archive/1/486737/100/0/threaded http://www.securityfocus.com/archive/1/498521/100/0/threaded http://www.securityfocus.com/bid/27369 http://www.securityfocus.com/bid/32379 http://www.vupen.com/english/advisories/2008/0227 https://exchange.xforce.ibmcloud.com/vulnerabilities/39813 https://www.exploit-db.com/exploits/4952

Share on: