Description
SQL injection vulnerability in Naxtech CMS Afroditi 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to default.asp.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by projectzero labs · textwebappsasp
https://www.exploit-db.com/exploits/38935
References (3)
Core 3
Core References
Exploit x_refsource_misc
http://packetstormsecurity.com/files/124624
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/89988
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/64572
Scores
EPSS
0.0055
EPSS Percentile
68.2%
Details
CWE
CWE-89
Status
published
Products (1)
naxtech/cms_afroditi
1.0
Published
Jan 08, 2014
Tracked Since
Feb 18, 2026