CVE-2008-4186

Webcms Portal Edition - SQL Injection

Title source: rule

Description

SQL injection vulnerability in index.php in webCMS Portal Edition allows remote attackers to execute arbitrary SQL commands via the id_doc parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED
by JosS · perlwebappsphp
https://www.exploit-db.com/exploits/6370

References (2)

Scores

EPSS 0.0022
EPSS Percentile 44.7%

Classification

CWE
CWE-89
Status draft

Affected Products (1)

webcms/webcms_portal_edition

Timeline

Published Sep 23, 2008
Tracked Since Feb 18, 2026