Description

SQL injection vulnerability in readmore.php in PHP-Fusion 4.01 allows remote attackers to execute arbitrary SQL commands via the news_id parameter.

Remediation

References

CVE-2008-5946

Related Vulnerabilities

Sqlite Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2015-3717)

MediaWiki Improper Input Validation Vulnerability (CVE-2017-8815)

WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker SQL Injection (7.1.13)

WordPress Plugin Broadcast Live Video-Live Streaming:HTML5, WebRTC, HLS, RTSP, RTMP Multiple Vulnerabilities (4.27.4)

AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2023-26116)

Severity

High

Classification

CVE-2008-5946 CWE-138

Tags

Missing Update Known Vulnerabilities