CVE-2008-6016

Name of the Vulnerable Software and Affected Versions EsFaq version 2.0

Description A SQL injection issue exists, allowing remote attackers to execute arbitrary SQL commands. This is achieved via the cid parameter in the "questions.php" file.

Recommendations For EsFaq version 2.0, consider restricting access to the "questions.php" file or avoiding the use of the cid parameter until a fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.