CVE-2008-3598 Information
Feb 14, 2021
cve
Description
Multiple SQL injection vulnerabilities in psipuss 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the Cid parameter to categories.php or (2) the Username parameter to login.php.
Reference
http://osvdb.org/35500 http://secunia.com/advisories/25041/ http://securityreason.com/securityalert/4140 http://www.securityfocus.com/bid/30629 https://exchange.xforce.ibmcloud.com/vulnerabilities/44367 https://www.exploit-db.com/exploits/6226
Share on: