CVE-2008-1272 Information

Feb 14, 2021 cve

Description

Multiple SQL injection vulnerabilities in BM Classifieds 20080309 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to showad.php and the (2) ad parameter to pfriendly.php.

Reference

http://secunia.com/advisories/29297 http://www.securityfocus.com/bid/28159 https://exchange.xforce.ibmcloud.com/vulnerabilities/41066 https://www.exploit-db.com/exploits/5223

Share on: