1 matches found
CVE-2008-2903
SQL injection vulnerability in news.php in Advanced Webhost Billing System AWBS 2.3.3 through 2.7.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the viewnews parameter...