cbcvebase.
CVE-2008-2428
published 2008-06-18

CVE-2008-2428: Multiple SQL injection vulnerabilities in TorrentTrader 1.08 Classic allow remote attackers to execute arbitrary SQL commands via the (1) email or (2)…

PriorityP336medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
1.22%
64.9th percentile
Multiple SQL injection vulnerabilities in TorrentTrader 1.08 Classic allow remote attackers to execute arbitrary SQL commands via the (1) email or (2) wantusername parameter to account-signup.php, or the (3) receiver parameter to account-inbox.php in a msg action.

Affected

1 ranges
VendorProductVersion rangeFixed in
torrenttradertorrenttrader_classic
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.