Описание
Multiple SQL injection vulnerabilities in News Manager Lite 2.5 allow remote attackers to execute arbitrary SQL code via the (1) ID parameter to more.asp, (2) ID parameter to category_news.asp, or (3) filter parameter to news_sort.asp.
Multiple SQL injection vulnerabilities in News Manager Lite 2.5 allow remote attackers to execute arbitrary SQL code via the (1) ID parameter to more.asp, (2) ID parameter to category_news.asp, or (3) filter parameter to news_sort.asp.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-1846
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15549
- http://marc.info/?l=bugtraq&m=107999733503496&w=2
- http://secunia.com/advisories/11180
- http://securitytracker.com/id?1009507
- http://www.osvdb.org/4495
- http://www.osvdb.org/4496
- http://www.osvdb.org/4497
- http://www.securityfocus.com/bid/9935
EPSS
Процентиль: 81%
0.01533
Низкий
CVE ID
Связанные уязвимости
nvd
больше 21 года назад
Multiple SQL injection vulnerabilities in News Manager Lite 2.5 allow remote attackers to execute arbitrary SQL code via the (1) ID parameter to more.asp, (2) ID parameter to category_news.asp, or (3) filter parameter to news_sort.asp.
EPSS
Процентиль: 81%
0.01533
Низкий