VYPR
Unrated severityNVD Advisory· Published Dec 26, 2008· Updated Jun 16, 2026

CVE-2008-5727

CVE-2008-5727

Description

SQL injection vulnerability in modules/auth/password_recovery.php in AIST NetCat 3.12 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the query string.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • Netcat/Netcat8 versions
    cpe:2.3:a:netcat:netcat:*:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:netcat:netcat:*:*:*:*:*:*:*:*range: <=3.12
    • cpe:2.3:a:netcat:netcat:1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:netcat:netcat:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:netcat:netcat:2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:netcat:netcat:2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:netcat:netcat:2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:netcat:netcat:2.4:*:*:*:*:*:*:*
    • cpe:2.3:a:netcat:netcat:3.0:*:*:*:*:*:*:*
  • Aist/NetCatllm-fuzzy
    Range: <=3.12

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.