CVE-2008-2757
MEDIUM—CVSS v3
6.5CVSS v2
0.65%
EPSS (exploit probability)
CWE-89CWE
Description
SQL injection vulnerability in search.asp in Xigla Absolute News Manager XE 3.2 allows remote authenticated administrators to execute arbitrary SQL commands via the orderby parameter.
Affected routers (1)
| Vendor | Model | Matched via | Affected versions | Fixed in | Patch Status |
|---|---|---|---|---|---|
| Ubiquiti | Ubiquiti EdgeRouter X | — |
— | — | Likely Patched |