Vulnerability Details CVE-2008-1957
SQL injection vulnerability in news.php in Tr Script News 2.1 allows remote attackers to execute arbitrary SQL commands via the nb parameter in voir mode.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/29814
- http://www.securityfocus.com/bid/28876
- http://www.vupen.com/english/advisories/2008/1319/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41946
- https://www.exploit-db.com/exploits/5483
- http://secunia.com/advisories/29814
- http://www.securityfocus.com/bid/28876
- http://www.vupen.com/english/advisories/2008/1319/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41946
- https://www.exploit-db.com/exploits/5483
Products affected by CVE-2008-1957
-
cpe:2.3:a:easyscripts:tr_script_news:2.1