CVE-2008-2135 Information

Description

Multiple SQL injection vulnerabilities in VisualShapers ezContents 2.0.0 allow remote attackers to execute arbitrary SQL commands via the (1) contentname parameter to showdetails.php and the (2) article parameter to printer.php.

Reference

http://securityreason.com/securityalert/3865 http://www.securityfocus.com/archive/1/491813/100/0/threaded http://www.securityfocus.com/bid/29098 https://exchange.xforce.ibmcloud.com/vulnerabilities/42260 https://www.exploit-db.com/exploits/5559