Vulnerability Details CVE-2009-0426
SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Classified Listings Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/33482
- http://www.securityfocus.com/bid/33253
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47959
- https://www.exploit-db.com/exploits/7767
- http://secunia.com/advisories/33482
- http://www.securityfocus.com/bid/33253
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47959
- https://www.exploit-db.com/exploits/7767
Products affected by CVE-2009-0426
-
cpe:2.3:a:dmxready:classified_listings_manager:1.1