Unrated severityNVD Advisory· Published Apr 6, 2009· Updated Apr 23, 2026

CVE-2008-6623

Description

SQL injection vulnerability in getin.php in WEBBDOMAIN Post Card (aka Web Postcards) 1.02 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.

Affected products

Webbdomain/Post Card2 versions
cpe:2.3:a:webbdomain:post_card:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:webbdomain:post_card:*:*:*:*:*:*:*:*range: <=1.02
- cpe:2.3:a:webbdomain:post_card:1.01:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/32108nvdExploit
secunia.com/advisories/32494nvdVendor Advisory
osvdb.org/49824nvd
exchange.xforce.ibmcloud.com/vulnerabilities/46359nvd
www.exploit-db.com/exploits/6989nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000