Unrated severityNVD Advisory· Published Jan 23, 2009· Updated Apr 23, 2026

CVE-2008-5958

Description

Multiple SQL injection vulnerabilities in Active Test 2.1 allow remote attackers to execute arbitrary SQL commands via the QuizID parameter to (1) questions.asp, (2) importquestions.asp, and (3) quiztakers.asp.

Affected products

Activewebsoftwares/Active Test
cpe:2.3:a:activewebsoftwares:active_test:2.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/32902nvdVendor Advisory
osvdb.org/50405nvd
osvdb.org/50406nvd
osvdb.org/50407nvd
www.securityfocus.com/bid/32547nvd
www.vupen.com/english/advisories/2008/3299nvd
exchange.xforce.ibmcloud.com/vulnerabilities/46919nvd
www.exploit-db.com/exploits/7295nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000