cve/2008/CVE-2008-2189.md

CVE-2008-2189

Description

SQL injection vulnerability in viewfaqs.php in AnServ Auction XL allows remote attackers to execute arbitrary SQL commands via the cat parameter.

POC

Reference

• http://securityreason.com/securityalert/3874
• https://www.exploit-db.com/exploits/5543

Github

No PoCs found on GitHub currently.