Unrated severityNVD Advisory· Published Mar 25, 2008· Updated Jun 16, 2026
CVE-2008-1496
CVE-2008-1496
Description
Multiple SQL injection vulnerabilities in PEEL, possibly 3.x and earlier, allow remote attackers to execute arbitrary SQL commands via the (1) email parameter to (a) membre.php, and the (2) timestamp parameter to (b) the details action in achat/historique_commandes.php and (c) the facture action in factures/facture_html.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.