CVE-2008-4044

Description

SQL injection vulnerability in article/readarticle.php in AJ Square aj-hyip (aka AJ HYIP Acme) allows remote attackers to execute arbitrary SQL commands via the artid parameter.

Affected products

• aj_square / aj_hyipacme – acme

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/44803
• MISChttp://www.securityfocus.com/bid/30978
• EXPLOIThttps://www.exploit-db.com/exploits/6351
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/45201
• MISChttp://securityreason.com/securityalert/4241