CVE-2008-6526

Description

SQL injection vulnerability in index.php in BosDev BosClassifieds allows remote attackers to execute arbitrary SQL commands via the cat_id parameter, a different vector than CVE-2008-1838.

Affected products

• bosdev / bos_classifieds

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/46308
• EXPLOIThttps://www.exploit-db.com/exploits/6962
• MISChttp://www.securityfocus.com/bid/32075