Unrated severityNVD Advisory· Published Mar 17, 2008· Updated Apr 23, 2026

CVE-2008-1349

Description

SQL injection vulnerability in viewcat.php in the bamaGalerie (Bama Galerie) 3.03 and 3.041 module for eXV2 2.0.6 allows remote attackers to execute arbitrary SQL commands via the cid parameter.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/29359nvdVendor Advisory
secunia.com/advisories/29362nvdVendor Advisory
packetstormsecurity.org/0804-exploits/runcms11a-sql.txtnvd
www.securityfocus.com/bid/28229nvd
exchange.xforce.ibmcloud.com/vulnerabilities/41188nvd
www.exploit-db.com/exploits/5244nvd
www.exploit-db.com/exploits/5340nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000