Lucene search
K

5 matches found

Prion
Prion
added 2008/12/17 5:30 p.m.13 views

Sql injection

SQL injection vulnerability in bidhistory.asp in Active Bids 3.5 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter...

7.5CVSS9.1AI score0.01196EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2008/12/17 5:30 p.m.15 views

CVE-2008-5640

SQL injection vulnerability in bidhistory.asp in Active Bids 3.5 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter...

7.5CVSS8.4AI score0.01196EPSS
Exploits0References6
Cvelist
Cvelist
added 2008/12/17 5:0 p.m.23 views

CVE-2008-5640

SQL injection vulnerability in bidhistory.asp in Active Bids 3.5 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter...

8.4AI score0.01196EPSS
Exploits0References6
CVE
CVE
added 2008/12/17 5:0 p.m.42 views

CVE-2008-5640

CVE-2008-5640 describes an SQL injection in bidhistory.asp of Active Bids 3.5, exploitable via the ItemID parameter and enabling remote SQL command execution. Affected product: Active Bids 3.5 (bidhistory.asp). Root cause: unsanitized ItemID parameter leading to SQL injection. Impact: partial con...

7.5CVSS8.4AI score0.01196EPSS
Exploits0References6Affected Software1
Exploit DB
Exploit DB
added 2008/11/29 12:0 a.m.24 views

Active Bids 3.5 - 'itemID' Blind SQL Injection

Tybe : Remote Blind SQL Injection Vulnerability Vendor : www.activewebsoftwares.com Software : Active Bids author : Mountassif Moad http://site.il/activebids/bidhistory.asp?ItemID=354%20and%201=1 http://site.il/activebids/bidhistory.asp?ItemID=354%20and%201=0 Demo :...

7.4AI score
Exploits0
Rows per page
Query Builder