CVE-2008-1613

RedDot CMS (ioRD.asp) is vulnerable to a pre-authentication SQL injection via the LngId parameter. The issue, present in RedDot CMS 7.5 Build 7.5.0.48 and potentially in 6.5 and 7.0, arises from inadequate validation of LngId, allowing remote attackers to execute arbitrary SQL and enumerate datab...