CVE-2008-6243

Scripts FOR Sites EZ Hotscripts-likesite - SQL Injection

Title source: rule
STIX 2.1

Description

SQL injection vulnerability in showcategory.php in Scripts For Sites (SFS) Hotscripts-like Site allows remote attackers to execute arbitrary SQL commands via the cid parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by TR-ShaRk · textwebappsphp
https://www.exploit-db.com/exploits/6903

References (5)

Core 5
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/32536
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/46277
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/6903
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/48945
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/49546

Scores

EPSS 0.0049
EPSS Percentile 65.7%

Details

CWE
CWE-89
Status published
Products (1)
scripts_for_sites/ez_hotscripts-likesite
Published Feb 23, 2009
Tracked Since Feb 18, 2026