CVE-2008-0219

Php Webquest - SQL Injection

Title source: rule

Description

SQL injection vulnerability in soporte_horizontal_w.php in PHP Webquest 2.6 allows remote attackers to execute arbitrary SQL commands via the id_actividad parameter, a different vector than CVE-2007-4920.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ka0x · perlwebappsphp
https://www.exploit-db.com/exploits/4867

References (4)

Scores

EPSS 0.0054
EPSS Percentile 67.7%

Details

CWE
CWE-89
Status published
Products (1)
php_webquest/php_webquest 2.6
Published Jan 10, 2008
Tracked Since Feb 18, 2026