1 results (0.007 seconds)
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 2
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 2CVE-2009-3356 – Image voting 1.0 - 'index.php?show' SQL Injection
https://notcve.org/view.php?id=CVE-2009-3356
SQL injection vulnerability in index.php in Image voting 1.0 allows remote attackers to execute arbitrary SQL commands via the show parameter. Vulnerabilidad de inyección SQL en index.php en Image voting v1.0 permite a los atacantes remotos ejecutar arbitrariamente comandos SQL a través del parámetro show. • https://www.exploit-db.com/exploits/9639 http://secunia.com/advisories/36705 http://www.exploit-db.com/exploits/9639 https://exchange.xforce.ibmcloud.com/vulnerabilities/53178 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •