CVE-2008-3580 Information
Feb 14, 2021
cve
Description
Multiple SQL injection vulnerabilities in Qsoft K-Links allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to visit.php or the PATH_INFO to the default URI under (2) report/ (3) addreview/ or (4) refer/.
Reference
http://secunia.com/advisories/31245 http://securityreason.com/securityalert/4131 http://www.securityfocus.com/bid/30520 https://exchange.xforce.ibmcloud.com/vulnerabilities/44160 https://exchange.xforce.ibmcloud.com/vulnerabilities/44219 https://www.exploit-db.com/exploits/6192
Share on: