Awbs: >> Advanced Webhost Billing System >> 2.3.3 Security Vulnerabilities
SQL injection vulnerability in cart.php in Advanced Webhost Billing System (AWBS) 2.9.2 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the oid parameter in an add_other action.
CVSS Score
7.5
EPSS Score
0.01
Published
2011-01-20
SQL injection vulnerability in news.php in Advanced Webhost Billing System (AWBS) 2.3.3 through 2.7.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the viewnews parameter.
CVSS Score
6.8
EPSS Score
0.002
Published
2008-06-30