SQL Injection Vulnerability in iTechClassifieds by iTech
CVE-2008-0685

Currently unrated

Key Information:

Vendor: Itechscripts
Status: Itechclassifieds
Vendor: CVE Published:; 12 February 2008

🔔 Create Itechscripts Vulnerability Alert

What is CVE-2008-0685?

The SQL injection vulnerability in ViewCat.php of iTechClassifieds 3.0 allows attackers to manipulate SQL queries by exploiting the CatID parameter. This flaw enables potential remote execution of arbitrary SQL commands, compromising the security of the application and exposing sensitive data.

References

http://secunia.com/advisories/28773

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/27574

vdb-entryx_refsource_BID

http://marc.info/?l=bugtraq&m=120197273611835&w=2

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Feb 12, 2008