CVE-2008-4703

SQL injection vulnerability in news.php in BosDev BosNews 4.0 allows remote attackers to execute arbitrary SQL commands via the article parameter.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 35%
Common Weakness Enumeration
References
http://securityreason.com/securityalert/4474
http://www.securityfocus.com/bid/28778
https://exchange.xforce.ibmcloud.com/vulnerabilities/41806
https://www.exploit-db.com/exploits/5446
http://securityreason.com/securityalert/4474
http://www.securityfocus.com/bid/28778
https://exchange.xforce.ibmcloud.com/vulnerabilities/41806
https://www.exploit-db.com/exploits/5446