CVE-2008-2891

Name of the Vulnerable Software and Affected Versions emuCMS version 0.3

Description The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the cat id parameter in a "category" action, specifically targeting the index.php file.

Recommendations For emuCMS version 0.3, consider restricting access to the vulnerable index.php file or the category action until a patch is available. As a temporary workaround, avoid using the cat id parameter in the affected API endpoint until the issue is resolved.