Vulnerabilities > 1ST News
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-11-04 | CVE-2008-4890 | SQL Injection vulnerability in 1ST News 4 Professional PR1 SQL injection vulnerability in products.php in 1st News 4 Professional (PR 1) allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |