CVE-2008-7180

Telephone Directory 2008 - RCE

Title source: llm

Description

del_query1.php in Telephone Directory 2008 allows remote attackers to delete arbitrary contacts via a direct request with a modified id variable.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Stack · perlwebappsphp
https://www.exploit-db.com/exploits/5769

References (2)

Scores

EPSS 0.0282
EPSS Percentile 86.2%

Details

CWE
CWE-20
Status published
Products (1)
rittwick_banerjee/telephone_directory_2008
Published Sep 08, 2009
Tracked Since Feb 18, 2026