Vulnerability Details CVE-2008-5649
SQL injection vulnerability in admin/admin.php in AlstraSoft Article Manager Pro 1.6 allows remote attackers to execute arbitrary SQL commands via the username parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.1%
CVSS Severity
CVSS v2 Score 10.0
References
- http://secunia.com/advisories/32665
- http://securityreason.com/securityalert/4772
- http://www.securityfocus.com/bid/32276
- http://www.vupen.com/english/advisories/2008/3140
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46588
- https://www.exploit-db.com/exploits/7102
- http://secunia.com/advisories/32665
- http://securityreason.com/securityalert/4772
- http://www.securityfocus.com/bid/32276
- http://www.vupen.com/english/advisories/2008/3140
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46588
- https://www.exploit-db.com/exploits/7102
Products affected by CVE-2008-5649
-
cpe:2.3:a:alstrasoft:article_manager_pro:1.6