CVE-2008-5804

Name of the Vulnerable Software and Affected Versions e-topbiz Number Links 1 Php Script (affected versions not specified)

Description The issue allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit action. This is possible due to a SQL injection vulnerability in the admin/admin catalog.php file.

Recommendations For e-topbiz Number Links 1 Php Script, consider restricting access to the id parameter in the edit action to minimize the risk of exploitation. Avoid using the id parameter in the affected admin/admin catalog.php file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.