mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
774 B
774 B
CVE-2008-2862
Description
Multiple SQL injection vulnerabilities in eLineStudio Site Composer (ESC) 2.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to ansFAQ.asp and the (2) template_id parameter to preview.asp.
POC
Reference
- http://securityreason.com/securityalert/3957
- http://www.bugreport.ir/?/45
- https://www.exploit-db.com/exploits/5859
Github
No PoCs found on GitHub currently.