CVE-2008-5978
Ocean12 Mailing List Manager Gold - SQL Injection
Title source: llmDescription
Multiple SQL injection vulnerabilities in Ocean12 Mailing List Manager Gold allow remote attackers to execute arbitrary SQL commands via the Email parameter to (1) default.asp and (2) s_edit.asp.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Pouya_Server · textwebappsphp
https://www.exploit-db.com/exploits/7319
exploitdb
WRITEUP
VERIFIED
by Charalambous Glafkos · textwebappsasp
https://www.exploit-db.com/exploits/32603
Scores
EPSS
0.0072
EPSS Percentile
72.1%
Classification
CWE
CWE-89
Status
draft
Affected Products (1)
ocean12_technologies/mailing_list_manager
Timeline
Published
Jan 27, 2009
Tracked Since
Feb 18, 2026