CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Drake Team: >> Drake Cms >> 0.2 Security Vulnerabilities

CVE-2008-6475

SQL injection vulnerability in the guestbook component (components/guestbook/guestbook.php) in Drake CMS 0.4.11 and earlier allows remote attackers to execute arbitrary SQL commands via the Via HTTP header (HTTP_VIA) to index.php.

CVSS Score

7.5

EPSS Score

0.001

Published

2009-03-16

Page 1

Vulnerabilities

Vulnerable Software

Drake Team: >> Drake Cms >> 0.2 Security Vulnerabilities

Products

Pricing

Contact Us