cve/2008/CVE-2008-3952.md

CVE-2008-3952

Description

SQL injection vulnerability in questions.php in EsFaq 2.0 allows remote attackers to execute arbitrary SQL commands via the idcat parameter.

POC

Reference

• http://securityreason.com/securityalert/4231
• https://www.exploit-db.com/exploits/6383

Github

No PoCs found on GitHub currently.