CVE-2009-3788

CVE-2009-3788

EPSS 1.2%

SQL injection vulnerability in index.php in OpenDocMan 1.2.5 allows remote attackers to execute arbitrary SQL commands via the frmuser (aka Username) parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://osvdb.org/59301 http://secunia.com/advisories/30750 https://exchange.xforce.ibmcloud.com/vulnerabilities/53886 http://www.packetstormsecurity.org/0910-exploits/opendocman-sqlxss.txt http://www.securityfocus.com/bid/36777