CVE-2008-4345

Webportal Cms < 0.7.4 - SQL Injection

Title source: rule

Description

SQL injection vulnerability in download.php in WebPortal CMS 0.7.4 and earlier allows remote attackers to execute arbitrary SQL commands via the aid parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by StAkeR · perlwebappsphp
https://www.exploit-db.com/exploits/6443

References (5)

Scores

EPSS 0.0044
EPSS Percentile 63.0%

Details

CWE
CWE-89
Status published
Products (4)
webportal/webportal_cms 0.6.0
webportal/webportal_cms 0.6_beta
webportal/webportal_cms 0.7.3
webportal/webportal_cms < 0.7.4
Published Sep 30, 2008
Tracked Since Feb 18, 2026