CVE-2009-0703

UNRATEDInjection

JSON export Create alert

Description

SQL injection vulnerability in bview.asp in ASPThai.Net Webboard 6.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected products

aspthai.net / aspthai.net_webboard6.0 – 6.0

References

EXPLOIThttps://www.exploit-db.com/exploits/7635
MISChttp://www.securityfocus.com/bid/33084
VENDOR_ADVISORYhttp://secunia.com/advisories/34099
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/47722