CVE-2008-5655

Name of the Vulnerable Software and Affected Versions MyioSoft EasyBookMarker version 4.0

Description The issue allows remote attackers to execute arbitrary SQL commands, possibly via the delete folder and delete link parameters to unspecified vectors, such as plugins/bookmarker/bookmarker backend.php or ajaxp.php.

Recommendations For MyioSoft EasyBookMarker version 4.0, consider restricting access to the delete folder and delete link parameters until a patch is available. Avoid using these parameters in the affected API endpoints to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.