CVE-2008-2843
N/A
N/A
Summary
Multiple SQL injection vulnerabilities in doITLive CMS 2.50 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) ID parameter in an USUB action to default.asp and the (2) Licence[SpecialLicenseNumber] (aka LicenceId) cookie to edit/default.asp.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/29789
- http://www.bugreport.ir/?/43
- http://secunia.com/advisories/30705
- https://www.exploit-db.com/exploits/5849
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43163
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43161
References
- http://www.securityfocus.com/bid/29789
- http://www.bugreport.ir/?/43
- http://secunia.com/advisories/30705
- https://www.exploit-db.com/exploits/5849
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43163
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43161
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.