SQL injection vulnerability in news.php in ComicShout 2.8 allows remote attackers to execute arbitrary SQL commands via the news_id parameter, a different vector than CVE-2008-2456.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 64.4%