Unrated severityNVD Advisory· Published Mar 20, 2004· Updated Jun 16, 2026
CVE-2004-1846
CVE-2004-1846
Description
Multiple SQL injection vulnerabilities in News Manager Lite 2.5 allow remote attackers to execute arbitrary SQL code via the (1) ID parameter to more.asp, (2) ID parameter to category_news.asp, or (3) filter parameter to news_sort.asp.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- cpe:2.3:a:expinion.net:news_manager_lite:2.5:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
8- securitytracker.com/idnvdExploitPatchVendor Advisory
- www.osvdb.org/4495nvdExploitVendor Advisory
- www.osvdb.org/4496nvdExploitVendor Advisory
- www.osvdb.org/4497nvdExploitVendor Advisory
- www.securityfocus.com/bid/9935nvdExploitPatchVendor Advisory
- marc.infonvd
- secunia.com/advisories/11180nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/15549nvd
News mentions
0No linked articles in our index yet.