CVE-2008-4093

2008-09-1516:00:00

mitre

www.cve.org

8.4 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

40.1%

JSON

SQL injection vulnerability in memberstats.php in YourOwnBux 3.1 and 3.2 beta, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter.

References

securityreason.com/securityalert/4256

www.securityfocus.com/bid/30868

exchange.xforce.ibmcloud.com/vulnerabilities/44758

www.exploit-db.com/exploits/6321