SQL Injection Flaw in AJ Auction Pro Platinum by AJ Auction
CVE-2008-6003

Currently unrated

Key Information:

Vendor

Aj Square

Vendor
CVE Published:
28 January 2009

Badges

๐Ÿ‘พ Exploit Exists

What is CVE-2008-6003?

The SQL injection vulnerability in AJ Auction Pro Platinum 2, specifically in the sellers_othersitem.php file, enables remote attackers to execute arbitrary SQL commands by manipulating the seller_id parameter. This could lead to unauthorized data access and manipulation, allowing attackers to exploit the application's database.

References

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.