CVE-2008-3507

CVE-2008-3507

EPSS 1.0%

SQL injection vulnerability in index.php in LiteNews 0.1 (aka 01), and possibly 1.2 and earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://exchange.xforce.ibmcloud.com/vulnerabilities/44230 https://www.exploit-db.com/exploits/6207 http://www.securityfocus.com/bid/30575