VYPR
Unrated severityNVD Advisory· Published Oct 18, 2008· Updated Jun 16, 2026

CVE-2008-4606

CVE-2008-4606

Description

Multiple SQL injection vulnerabilities in IP Reg 0.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) location_id parameter to locationdel.php and (2) vlan_id parameter to vlanedit.php. NOTE: the vlanview.php and vlandel.php vectors are already covered by CVE-2007-6579.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • IP Reg/IP Reg2 versions
    cpe:2.3:a:ip_reg:ip_reg:0.3:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ip_reg:ip_reg:0.3:*:*:*:*:*:*:*
    • (no CPE)range: <=0.4

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.