CVE-2008-6652

CVE-2008-6652

EPSS 1.0%

SQL injection vulnerability in asd.php in OneCMS 2.5 allows remote attackers to execute arbitrary SQL commands via the sitename parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/42255 https://www.exploit-db.com/exploits/5557 http://www.securityfocus.com/bid/29102