CVE-2008-3954
published 2008-09-11CVE-2008-3954: SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat…
PriorityP340high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.18%
63.8th percentile
SQL injection vulnerability in index.php in AlstraSoft Forum Pay Per Post Exchange allows remote attackers to execute arbitrary SQL commands via the cat parameter in a showcat action.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Alstrasoft Forum - 'catid' SQL Injection
exploitdb·2008-09-09
CVE-2008-3954 Alstrasoft Forum - 'catid' SQL Injection
Alstrasoft Forum - 'catid' SQL Injection
---
################################################################
# .___ __ _______ .___ #
# __| _/____ _______| | __ ____ \ _ \ __| _/____ #
# / __ |\__ \\_ __ \ |/ // ___\/ /_\ \ / __ |/ __ \ #
# / /_/ | / __ \| | \/ \_____ /\_____|\____\ #
# \/ \/ \/ #
# ___________ ______ _ __ #
# _/ ___\_ __ \_/ __ \ \/ \/ / #
# \ \___| | \/\ ___/\ / #
# \___ >__| \___ >\/\_/ #
# est.2007 \/ \/ forum.darkc0de.com #
################################################################
# --d3hydr8 -rsauron-baltazar -sinner_01 -C1c4Tr1Z - beenu #
# ---QKrun1x-P47tr1ck - FeDeReR -MAGE -JeTFyrE #
# and all darkc0de members ---#
################################################################
#
# Author: r45c4l
#
# Home : www.darkc0de.com
#
# Email : [email protected]
Exploit-DB
Alstrasoft Forum - 'cat' SQL Injection
exploitdb·2008-09-07
CVE-2008-3954 Alstrasoft Forum - 'cat' SQL Injection
Alstrasoft Forum - 'cat' SQL Injection
---
################################################################
# .___ __ _______ .___ #
# __| _/____ _______| | __ ____ \ _ \ __| _/____ #
# / __ |\__ \\_ __ \ |/ // ___\/ /_\ \ / __ |/ __ \ #
# / /_/ | / __ \| | \/ \_____ /\_____|\____\ #
# \/ \/ \/ #
# ___________ ______ _ __ #
# _/ ___\_ __ \_/ __ \ \/ \/ / #
# \ \___| | \/\ ___/\ / #
# \___ >__| \___ >\/\_/ #
# est.2007 \/ \/ forum.darkc0de.com #
################################################################
# --d3hydr8 - rsauron - baltazar - sinner_01 - C1c4Tr1Z - beenu#
# --- QKrun1x - skillfaker - FeDeReR - Optyx - Nuclear
# and all darkc0de members ---#
################################################################
#
# Author: r45c4l and P47r1ck
#
# Home : www.darkc0de.com
#
# Emai
No writeups or analysis indexed.
http://securityreason.com/securityalert/4233http://www.securityfocus.com/bid/31048http://www.securitytracker.com/id?1020829http://www.vupen.com/english/advisories/2008/2508https://exchange.xforce.ibmcloud.com/vulnerabilities/44932https://www.exploit-db.com/exploits/6396http://securityreason.com/securityalert/4233http://www.securityfocus.com/bid/31048http://www.securitytracker.com/id?1020829http://www.vupen.com/english/advisories/2008/2508https://exchange.xforce.ibmcloud.com/vulnerabilities/44932https://www.exploit-db.com/exploits/6396
2008-09-11
Published