SQL injection vulnerability in the login directory in AlstraSoft Web Host Directory allows remote attackers to execute arbitrary SQL commands via the pwd parameter.
References
Configurations
History
21 Nov 2024, 00:54
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/32660 - Vendor Advisory | |
References | () http://securityreason.com/securityalert/4771 - | |
References | () http://www.securityfocus.com/bid/32298 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/46592 - | |
References | () https://www.exploit-db.com/exploits/7103 - |
Information
Published : 2008-12-17 18:30
Updated : 2024-11-21 00:54
NVD link : CVE-2008-5650
Mitre link : CVE-2008-5650
CVE.ORG link : CVE-2008-5650
JSON object : View
Products Affected
alstrasoft
- webhost_directory
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')