CVE-2008-6033

Name of the Vulnerable Software and Affected Versions WSN Links version 2.20

Description A SQL injection issue allows remote attackers to execute arbitrary SQL commands. This is achieved by manipulating the id parameter in the comments.php file.

Recommendations For WSN Links version 2.20, update to a newer version that contains a fix for this issue. As a temporary workaround, consider restricting access to the comments.php file to minimize the risk of exploitation. Avoid using the id parameter in the affected comments.php file until the issue is resolved.