Vulnerabilities

CVE-2008-2903

by Fred · 30/06/2008

SQL injection vulnerability in news.php in Advanced Webhost Billing System (AWBS) 2.3.3 through 2.7.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the viewnews parameter.

Date published : 2008-06-30

http://www.securityfocus.com/bid/29721

https://www.exploit-db.com/exploits/5823

Related

Tags: Cybersecurity Alert