CVE-2008-4889

N/A Unknown

Published: November 04, 2008 Modified: April 23, 2026

Description

SQL injection vulnerability in index.php in deV!L'z Clanportal (DZCP) 1.4.9.6 and earlier allows remote attackers to execute arbitrary SQL commands via the users parameter in an addbuddy operation in a buddys action.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://osvdb.org/49500

Source: cve@mitre.org

http://secunia.com/advisories/32458

Source: cve@mitre.org

Vendor Advisory

http://securityreason.com/securityalert/4552

Source: cve@mitre.org

http://www.securityfocus.com/bid/32049

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2008/2974

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/46268

Source: cve@mitre.org

https://www.exploit-db.com/exploits/6961

Source: cve@mitre.org

http://osvdb.org/49500