CyberSec.Space Logo
CVEブラウザに戻る

CVE-2008-3603

HIGH
7.5
CVSS Severity Score
EPSS Score0.0630%
EPSS Percentile20.05th
Published2008年8月12日
Last Modified2026年4月23日

Vulnerability Description

SQL injection vulnerability in index.php in Vacation Rental Script 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a sections action.

Affected Platforms (CPE)

📦
Vacation Rentals

Vacation Rental Script

= 3.0

References & Advisories

🔗 http://secunia.com/advisories/31421
🔗 http://www.securityfocus.com/bid/30626
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44375
🔗 https://www.exploit-db.com/exploits/6221
🔗 http://secunia.com/advisories/31421
🔗 http://www.securityfocus.com/bid/30626
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44375
🔗 https://www.exploit-db.com/exploits/6221

関連する脆弱性情報

CVE-2012-43246.8

Cross-site request forgery (CSRF) vulnerability in PHPJabbers Vacation Rental Script allows remote attackers to hijack the authent...

CVE-2012-65874.3

Cross-site scripting (XSS) vulnerability in vacation/1_mobile/alert_members.php in MYRE Vacation Rental Software allows remote att...

CVE-2006-26512.6

Cross-site scripting (XSS) vulnerability in index.php in Vacation Rental Script 1.0 allows remote attackers to inject arbitrary we...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...