CVE-2008-2903 Information
Feb 14, 2021
cve
Description
SQL injection vulnerability in news.php in Advanced Webhost Billing System (AWBS) 2.3.3 through 2.7.1 when magic_quotes_gpc is disabled allows remote attackers to execute arbitrary SQL commands via the viewnews parameter.
Reference
http://secunia.com/advisories/30646 http://www.securityfocus.com/bid/29721 https://exchange.xforce.ibmcloud.com/vulnerabilities/43110 https://www.exploit-db.com/exploits/5823
Share on: