RSS   Vulnerabilities for 'Parsaweb cms'   RSS

2008-09-30
 
CVE-2008-4364

CWE-89
 

 
SQL injection vulnerability in default.aspx in ParsaGostar ParsaWeb CMS allows remote attackers to execute arbitrary SQL commands via the (1) id parameter in the "page" page and (2) txtSearch parameter in the "Search" page.

 


Copyright 2024, cxsecurity.com

 

Back to Top