CVE-2008-4703

EUVD-2008-4683
SQL injection vulnerability in news.php in BosDev BosNews 4.0 allows remote attackers to execute arbitrary SQL commands via the article parameter.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
Common Weakness Enumeration
References
http://securityreason.com/securityalert/4474
http://www.securityfocus.com/bid/28778
https://exchange.xforce.ibmcloud.com/vulnerabilities/41806
https://www.exploit-db.com/exploits/5446
http://securityreason.com/securityalert/4474
http://www.securityfocus.com/bid/28778
https://exchange.xforce.ibmcloud.com/vulnerabilities/41806
https://www.exploit-db.com/exploits/5446