CVE-2009-4680

CVE-2009-4680

EPSS 1.0%

SQL injection vulnerability in search.php in phpDirectorySource 1.x allows remote attackers to execute arbitrary SQL commands via the st parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.org/0907-exploits/wbd-sqlxss.txt http://secunia.com/advisories/35941 http://www.exploit-db.com/exploits/9226 http://www.securityfocus.com/bid/35760