Unrated severityNVD Advisory· Published Jun 20, 2008· Updated Apr 23, 2026

CVE-2008-2791

Description

SQL injection vulnerability in product.detail.php in Kalptaru Infotech Comparison Engine Power Script 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected products

Kalptaru Infotech/Comparison Engine Power Script
cpe:2.3:a:kalptaru_infotech:comparison_engine_power_script:1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/30729nvdExploitVendor Advisory
www.securityfocus.com/bid/29768nvdExploit
exchange.xforce.ibmcloud.com/vulnerabilities/43138nvd
www.exploit-db.com/exploits/5834nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000