CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2008-4043 – AJ HYIP ACME - 'comment.php' SQL Injection
https://notcve.org/view.php?id=CVE-2008-4043
11 Sep 2008 — Multiple SQL injection vulnerabilities in AJ Square AJ HYIP Acme allow remote attackers to execute arbitrary SQL commands via the artid parameter to (1) acme/article/comment.php and (2) prime/article/comment.php. Múltiples vulnerabilidades de inyección SQL en AJ HYIP Acme de AJ Square, permiten a los atacantes remotos ejecutar comandos SQL arbitrarios por medio del parámetro artid en los archivos (1) acme/article/comment.php y (2) prime/article/comment.php. • https://www.exploit-db.com/exploits/6350 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2008-4044 – AJ HYIP ACME - 'readarticle.php' SQL Injection
https://notcve.org/view.php?id=CVE-2008-4044
11 Sep 2008 — SQL injection vulnerability in article/readarticle.php in AJ Square aj-hyip (aka AJ HYIP Acme) allows remote attackers to execute arbitrary SQL commands via the artid parameter. Vulnerabilidad de inyección SQL en article/readarticle.php en AJ Square aj-hyip (alias AJ HYIP Acme) que permite a los atacantes remotos ejecutar arbitrariamente comando SQL a través del parámetro artid. • https://www.exploit-db.com/exploits/6351 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •