CVE-2008-4890
CVE-2008-4890: SQL injection in 1st News 4 Professional (PR 1) via the id parameter in products.php. Remote attackers could execute arbitrary SQL commands, with impact on confidentiality, integrity, and availability as described (partial across all). The vulnerability is documented with multiple ...