CVE-2009-2891

CVE-2009-2891

EPSS 1.0%

SQL injection vulnerability in list.php in PHP Scripts Now Riddles allows remote attackers to execute arbitrary SQL commands via the catid parameter.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://packetstormsecurity.org/0907-exploits/riddledepot-sqlxss.txt http://secunia.com/advisories/35932 https://exchange.xforce.ibmcloud.com/vulnerabilities/51872 http://www.osvdb.org/56123