Description

SQL injection vulnerability in item.php in WeBid auction script 0.5.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Remediation

References

CVE-2008-7119

Related Vulnerabilities

Joomla URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-23754)

Apache HTTP Server Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion') Vulnerability (CVE-2009-1955)

OpenVPN AS Other Vulnerability (CVE-2006-2229)

Oracle Database Server CVE-2012-0534 Vulnerability (CVE-2012-0534)

phpMyAdmin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2016-9862)

Severity

High

Classification

CVE-2008-7119 CWE-138

Tags

Missing Update Known Vulnerabilities