CVE-2008-7119

Webid - SQL Injection

Title source: rule

Description

SQL injection vulnerability in item.php in WeBid auction script 0.5.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Stack · textwebappsphp
https://www.exploit-db.com/exploits/6341

References (3)

Scores

EPSS 0.0031
EPSS Percentile 54.1%

Classification

CWE
CWE-89
Status draft

Affected Products (1)

webidsupport/webid

Timeline

Published Aug 28, 2009
Tracked Since Feb 18, 2026