SQL injection vulnerability in news.php in ComicShout 2.8 allows remote malicious users to execute arbitrary SQL commands via the news_id parameter, a different vector than CVE-2008-2456.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
comicshout comicshout 2.8 |