CVE-2008-4357

Powie Plink - SQL Injection

Title source: rule

Description

SQL injection vulnerability in linkto.php in Powie pLink 2.07 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Stack · phpwebappsphp
https://www.exploit-db.com/exploits/6449

References (3)

Scores

EPSS 0.0041
EPSS Percentile 61.2%

Classification

CWE
CWE-89
Status draft

Affected Products (1)

powie/plink

Timeline

Published Sep 30, 2008
Tracked Since Feb 18, 2026