Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Sqlite Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2008-6593 - Vulnerability Database
Sqlite

Sqlite Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2008-6593

High
Reference: CVE-2008-6593
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-6593
Title: Sqlite Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Overview:

SQL injection vulnerability in LightNEasy/lightneasy.php in LightNEasy SQLite 1.2.2 and earlier allows remote attackers to inject arbitrary PHP code into comments.dat via the dlid parameter to index.php.