Vulnerability Details CVE-2008-4521
SQL injection vulnerability in thisraidprogress.php in the World of Warcraft tracker infusion (raidtracker_panel) module 2.0 for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the INFO_RAID_ID parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://securityreason.com/securityalert/4384
- http://www.securityfocus.com/bid/31579
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45675
- https://www.exploit-db.com/exploits/6682
- http://securityreason.com/securityalert/4384
- http://www.securityfocus.com/bid/31579
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45675
- https://www.exploit-db.com/exploits/6682
Products affected by CVE-2008-4521
-
cpe:2.3:a:php-fusion:world_of_warcraft_tracker_infusion_module:2.0