CVE-2008-3307 Information
Feb 14, 2021
cve
Description
SQL injection vulnerability in todos.php in C. Desseno YouTube Blog (ytb) 0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter a different vector than CVE-2008-3306.
Reference
http://secunia.com/advisories/31161 http://securityreason.com/securityalert/4037 http://www.securityfocus.com/bid/30345 https://exchange.xforce.ibmcloud.com/vulnerabilities/43954 https://www.exploit-db.com/exploits/6117
Share on: