Vulnerability Details CVE-2008-5273
SQL injection vulnerability in viewnews.asp in Todd Woolums ASP News Management 2.2 allows remote attackers to execute arbitrary SQL commands via the newsID parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/30593
- http://securityreason.com/securityalert/4658
- http://www.securityfocus.com/bid/29638
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42964
- https://www.exploit-db.com/exploits/5781
- http://secunia.com/advisories/30593
- http://securityreason.com/securityalert/4658
- http://www.securityfocus.com/bid/29638
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42964
- https://www.exploit-db.com/exploits/5781
Products affected by CVE-2008-5273
-
cpe:2.3:a:toddwoolums:todd_woolums_asp_news_management:2.2