Unrated severityNVD Advisory· Published Jan 23, 2009· Updated Apr 23, 2026

CVE-2008-5959

Description

Multiple SQL injection vulnerabilities in start.asp in Active Test 2.1 allow remote attackers to execute arbitrary SQL commands via the (1) useremail parameter (aka username field) or (2) password parameter (aka password field). NOTE: some of these details are obtained from third party information.

Affected products

Activewebsoftwares/Active Test
cpe:2.3:a:active_web_softwares:active_test:2.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/32902nvdVendor Advisory
osvdb.org/50408nvd
exchange.xforce.ibmcloud.com/vulnerabilities/46921nvd
www.exploit-db.com/exploits/7276nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000