CVE-2008-3309
DigiLeave <1.2 - SQL Injection
Title source: llmDescription
SQL injection vulnerability in info_book.asp in DigiLeave 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the book_id parameter.
Exploits (1)
References (5)
Scores
EPSS
0.0042
EPSS Percentile
62.1%
Details
CWE
CWE-89
Status
published
Products (1)
digiappz/digileave
< 1.2
Published
Jul 25, 2008
Tracked Since
Feb 18, 2026