Toddwoolums Todd Woolums Asp News Management vulnerabilities
2 known vulnerabilities affecting toddwoolums/todd_woolums_asp_news_management.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-5273P3HIGHCVSS 7.5PoCv2.22008-11-28
CVE-2008-5273 [HIGH] CWE-89 CVE-2008-5273: SQL injection vulnerability in viewnews.asp in Todd Woolums ASP News Management 2.2 allows remote at
SQL injection vulnerability in viewnews.asp in Todd Woolums ASP News Management 2.2 allows remote attackers to execute arbitrary SQL commands via the newsID parameter.
nvd
CVE-2008-5274P4MEDIUMCVSS 5.0PoCv2.22008-11-28
CVE-2008-5274 [MEDIUM] CWE-264 CVE-2008-5274: Todd Woolums ASP News Management 2.2 allows remote attackers to obtain news items via a direct reque
Todd Woolums ASP News Management 2.2 allows remote attackers to obtain news items via a direct request to (1) rss.asp, (2) viewheadings.asp, or (3) viewnews.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd