CVE-2008-4185

2008-09-2315:00:00

mitre

www.cve.org

AI Score

8.2

Confidence

Low

EPSS

0.004

Percentile

73.9%

JSON

SQL injection vulnerability in index.php in webCMS Portal Edition allows remote attackers to execute arbitrary SQL commands via the id parameter in a documentos action, a different vector than CVE-2008-3213.

References

secunia.com/advisories/31775

securityreason.com/securityalert/4314

spanish-hackers.com/exploits/24.txt

www.securityfocus.com/bid/31153

exchange.xforce.ibmcloud.com/vulnerabilities/45448

www.exploit-db.com/exploits/6370