CVE-2008-6257 Information

Description

SQL injection vulnerability in default.asp in Openasp 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the idpage parameter in the pages module.

Reference

http://secunia.com/advisories/32750 http://www.securityfocus.com/bid/32322 https://exchange.xforce.ibmcloud.com/vulnerabilities/46648 https://www.exploit-db.com/exploits/7137