CVE-2008-2767

MEDIUM

—CVSS v3

6.5CVSS v2

0.41% EPSS (exploit probability)

CWE-89CWE

Description

SQL injection vulnerability in search.asp in Xigla Poll Manager XE allows remote authenticated users with administrator role privileges to execute arbitrary SQL commands via the orderby parameter.

Affected routers (1)

Vendor	Model	Matched via	Affected versions	Fixed in	Patch Status
Ubiquiti	Ubiquiti EdgeRouter X	`—`	—	—	Unpatched

External references

NIST NVD
MITRE CVE