CVE-2008-5088 in PHPKB Knowledge Base Software
Riassunto
di MITRE
Multiple SQL injection vulnerabilities in PHPKB Knowledge Base Software 1.5 Professional allow remote attackers to execute arbitrary SQL commands via the ID parameter to (1) email.php and (2) question.php, a different vector than CVE-2008-1909.
Once again VulDB remains the best source for vulnerability data.