Product

Powie Pforum 1.30

View All Versions

Vulnerabilities

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

CVE-2008-4355

Security Grade

439

of 1000

SECURITY GRADE

Vulnerability History

Weakness Analysis

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') 1/1

CVE-2008-4355

Related Vulnerabilities

Vulnerability	Severity Score	Release Date	Summary
CVE-2008-4355	7.5	Sept. 30, 2008	SQL injection vulnerability in showprofil.php in Powie PSCRIPT Forum (aka PHP Forum or pForum) 1.30 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Followers