Vulnerabilities

CVE-2008-4364

by Fred · 30/09/2008

SQL injection vulnerability in default.aspx in ParsaGostar ParsaWeb CMS allows remote attackers to execute arbitrary SQL commands via the (1) id parameter in the "page" page and (2) txtSearch parameter in the "Search" page.

Date published : 2008-09-30

http://www.securityfocus.com/bid/31450

http://www.securityfocus.com/archive/1/496799/100/0/threaded

Related

Tags: Cybersecurity Alert