cpe:/a:myiosoft:easynews:4.0tr CVE-2008-1650 2008-04-02T13:44:00.000-04:00 2017-09-28T21:30:48.410-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-04-03T14:24:00.000-04:00 BUGTRAQ 20080401 EasyNews-40tr Multiple Remote Vulnerabilities (SQL Injection Exploit/XSS/LFI) BID 28542 SECUNIA 29624 SREASON 3793 EXPLOIT-DB 5333 XF easynews-index-sql-injection(41590) SQL injection vulnerability in dynamicpages/index.php in EasyNews 4.0 allows remote attackers to execute arbitrary SQL commands via the read parameter in an edp_Help_Internal_News action.