CVE-2009-0327

Опубликовано: 29 янв. 2009

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in readbible.php in Free Bible Search PHP Script 1.0 allows remote attackers to execute arbitrary SQL commands via the version parameter.

Ссылки

http://freshmeat.net/projects/freebiblesearch/?branch_id=77256&release_id=292446
http://secunia.com/advisories/33595
Vendor Advisory
http://www.securityfocus.com/bid/33301
Exploit
http://www.seraphimtech.net/repository/Changes.txt
URL Repurposed
https://www.exploit-db.com/exploits/7798
http://freshmeat.net/projects/freebiblesearch/?branch_id=77256&release_id=292446
http://secunia.com/advisories/33595
Vendor Advisory
http://www.securityfocus.com/bid/33301
Exploit
http://www.seraphimtech.net/repository/Changes.txt
URL Repurposed
https://www.exploit-db.com/exploits/7798

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:seraphimtech:free_bible_search_php_script:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 70%

0.00633

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-mhhq-94xq-hxv3

github

почти 4 года назад