CyberSec.Space Logo
Back to CVE Browser

CVE-2008-3603

HIGH
7.5
CVSS Severity Score
EPSS Score0.0630%
EPSS Percentile20.05th
PublishedAug 12, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

SQL injection vulnerability in index.php in Vacation Rental Script 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a sections action.

Affected Platforms (CPE)

πŸ“¦
Vacation Rentals

Vacation Rental Script

= 3.0

References & Advisories

πŸ”— http://secunia.com/advisories/31421
πŸ”— http://www.securityfocus.com/bid/30626
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/44375
πŸ”— https://www.exploit-db.com/exploits/6221
πŸ”— http://secunia.com/advisories/31421
πŸ”— http://www.securityfocus.com/bid/30626
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/44375
πŸ”— https://www.exploit-db.com/exploits/6221

Related Vulnerabilities

CVE-2012-43246.8

Cross-site request forgery (CSRF) vulnerability in PHPJabbers Vacation Rental Script allows remote attackers to hijack the authent...

CVE-2012-65874.3

Cross-site scripting (XSS) vulnerability in vacation/1_mobile/alert_members.php in MYRE Vacation Rental Software allows remote att...

CVE-2006-26512.6

Cross-site scripting (XSS) vulnerability in index.php in Vacation Rental Script 1.0 allows remote attackers to inject arbitrary we...

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...