CVE-2008-0847

Xoops Mytopics - SQL Injection

Title source: rule

Description

SQL injection vulnerability in print.php in the myTopics module for XOOPS allows remote attackers to execute arbitrary SQL commands via the articleid parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by S@BUN · textwebappsphp

https://www.exploit-db.com/exploits/5148

View Code ZIP pw:eip

References (4)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/40627

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/488315/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/27861

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/5148

Scores

EPSS 0.0046

EPSS Percentile 63.8%

Classification

CWE

CWE-89

Status draft

Affected Products (1)

xoops/mytopics

Timeline

Published Feb 21, 2008

Tracked Since Feb 18, 2026