CVE-2008-3034

Multiple SQL injection vulnerabilities in RSS-aggregator 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) IdFlux parameter to admin/fonctions/supprimer_flux.php and the (2) IdTag parameter to admin/fonctions/supprimer_tag.php.
Configurations

Configuration 1 (hide)

cpe:2.3:a:rss_aggregator:rss_aggregator:1.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-07-07 18:41

Updated : 2024-02-28 11:21


NVD link : CVE-2008-3034

Mitre link : CVE-2008-3034

CVE.ORG link : CVE-2008-3034


JSON object : View

Products Affected

rss_aggregator

  • rss_aggregator
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')