CVE-2008-6950
Webhost-panel Bankoi Webhosting Control Panel - SQL Injection
Title source: ruleDescription
Multiple SQL injection vulnerabilities in login.asp in Bankoi WebHosting Control Panel 1.20 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password field.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by R3d-D3V!L · textwebappsasp
https://www.exploit-db.com/exploits/7120
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/46637
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/32299
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/7120
Scores
EPSS
0.0031
EPSS Percentile
54.5%
Details
CWE
CWE-89
Status
published
Products (1)
webhost-panel/bankoi_webhosting_control_panel
1.20
Published
Aug 12, 2009
Tracked Since
Feb 18, 2026