7.5
CVSSv2

CVE-2008-1870

Published: 17/04/2008 Updated: 29/09/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

SQL injection vulnerability in getdata.php in PIGMy-SQL 1.4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

geek247 pigmy-sql 1.4

geek247 pigmy-sql

Exploits

#!/usr/bin/perl # - PIGMy-SQL <= 141 Blind SQL Injection Exploit - # PIGMy-SQL is vulnerable because the mysql querys are insecure, therefor it allows an attack to execute sql querys, since the # vulnerable page only returns a picture we have to use a blind sql script, heres a little one i coded below, it will be alot faster using things ...