SQL Injection in Johannes_hass Gaestebuch_module

CVE-2008-1314

SQL injection vulnerability in the Johannes Hass gaestebuch 2.2 module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit action to modules.php.

Vulnerability class: SQL Injection

EPSS: 0.010 (57.5th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References