CVE-2008-3386 Information

Description

SQL injection vulnerability in album.php in AlstraSoft Video Share Enterprise 4.51 allows remote attackers to execute arbitrary SQL commands via the UID parameter a different vector than CVE-2007-4086.

Reference

http://secunia.com/advisories/31134 http://securityreason.com/securityalert/4075 http://www.securityfocus.com/bid/30272 https://exchange.xforce.ibmcloud.com/vulnerabilities/43861 https://www.exploit-db.com/exploits/6092