CVE-2008-2135

2008-05-0918:00:00

mitre

www.cve.org

AI Score

8.5

Confidence

Low

EPSS

0.001

Percentile

37.5%

JSON

Multiple SQL injection vulnerabilities in VisualShapers ezContents 2.0.0 allow remote attackers to execute arbitrary SQL commands via the (1) contentname parameter to showdetails.php and the (2) article parameter to printer.php.

References

securityreason.com/securityalert/3865

www.securityfocus.com/archive/1/491813/100/0/threaded

www.securityfocus.com/bid/29098

exchange.xforce.ibmcloud.com/vulnerabilities/42260

www.exploit-db.com/exploits/5559