CVE-2008-2509

CVE-2008-2509

EPSS 1.0%

SQL injection vulnerability in pwd.asp in Excuse Online allows remote attackers to execute arbitrary SQL commands via the pID parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/42643 http://www.chroot.org/exploits/chroot_uu_002 http://www.securityfocus.com/archive/1/492580/100/0/threaded http://www.securityfocus.com/bid/29370