CVE-2008-4573

Description

SQL injection vulnerability in kategori.asp in MunzurSoft Wep Portal W3 allows remote attackers to execute arbitrary SQL commands via the kat parameter.

Affected products

• aspindir / munzursoft_web_portal_w3

References

• VENDOR_ADVISORYhttp://secunia.com/advisories/32238
• EXPLOIThttps://www.exploit-db.com/exploits/6725
• MISChttp://www.securityfocus.com/bid/31713
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/45817
• MISChttp://securityreason.com/securityalert/4420