|Date: (C)2008-04-22 (M)2017-10-04|| |
SQL injection vulnerability in ioRD.asp in RedDot CMS 7.5 Build 188.8.131.52, and possibly other versions including 6.5 and 7.0, allows remote attackers to execute arbitrary SQL commands via the LngId parameter.
|CVSS Score: 7.5||Access Vector: NETWORK|
|Exploit Score: 10.0||Access Complexity: LOW|
|Impact Score: 6.4||Authentication: NONE|
| ||Confidentiality: PARTIAL|
| ||Integrity: PARTIAL|
| ||Availability: PARTIAL|