SQL injection vulnerability in staticpages/easyecards/index.php in MyioSoft EasyE-Cards 3.5 trial edition (tr) and 3.10a, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the sid parameter in a pickup action.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2008-07-28T16:00:00
Updated: 2024-08-07T09:37:26.703Z
Reserved: 2008-07-28T00:00:00
Link: CVE-2008-3345
Vulnrichment
No data.
NVD
Status : Modified
Published: 2008-07-28T16:41:00.000
Modified: 2024-11-21T00:49:01.640
Link: CVE-2008-3345
Redhat
No data.