Unrated severityNVD Advisory· Published Feb 25, 2008· Updated Apr 23, 2026

CVE-2008-0943

Description

Multiple SQL injection vulnerabilities in Eagle Software Aeries Browser Interface (ABI) 3.7.2.2 allow remote attackers to execute arbitrary SQL commands via the (1) FC parameter to Comments.asp, or the Term parameter to (2) Labels.asp or (3) ClassList.asp.

Affected products

Aeries/Aeries Student Information System2 versions
cpe:2.3:a:aeries:aeries_student_information_system:3.7.2.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:aeries:aeries_student_information_system:3.7.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:aeries:aeries_student_information_system:3.8.2.8:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/27924nvdExploit
secunia.com/advisories/29053nvdVendor Advisory
securityreason.com/securityalert/3696nvd
www.securityfocus.com/archive/1/488428/100/0/threadednvd
exchange.xforce.ibmcloud.com/vulnerabilities/40757nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000