CVE-2008-6111

NetArt Media Vlog System 1.1 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in blog.php in NetArt Media Vlog System 1.1 allows remote attackers to execute arbitrary SQL commands via the note parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Mr.SQL · textwebappsphp

https://www.exploit-db.com/exploits/7186

View Code ZIP pw:eip

References (5)

[Vendor Advisory] http://secunia.com/advisories/32784

[Exploit] http://www.securityfocus.com/bid/32425

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7186

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/46783

[Third Party Advisory] http://www.vupen.com/english/advisories/2008/3247

Scores

EPSS 0.0044

EPSS Percentile 62.8%

Classification

CWE

CWE-89

Status draft

Affected Products (1)

netart_media/vlog_system

Timeline

Published Feb 11, 2009

Tracked Since Feb 18, 2026