CVE-2008-4357

Powie Plink - SQL Injection

Title source: rule

Description

SQL injection vulnerability in linkto.php in Powie pLink 2.07 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Stack · phpwebappsphp
https://www.exploit-db.com/exploits/6449

References (3)

Scores

EPSS 0.0041
EPSS Percentile 61.6%

Details

CWE
CWE-89
Status published
Products (1)
powie/plink 2.07
Published Sep 30, 2008
Tracked Since Feb 18, 2026