CVE-2008-3507

2008-08-0720:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.001

Percentile

41.6%

JSON

SQL injection vulnerability in index.php in LiteNews 0.1 (aka 01), and possibly 1.2 and earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action.

References

www.securityfocus.com/bid/30575

exchange.xforce.ibmcloud.com/vulnerabilities/44230

www.exploit-db.com/exploits/6207