Vulnerability Details CVE-2009-0810
SQL injection vulnerability in login.php in xGuestbook 2.0 allows remote attackers to execute arbitrary SQL commands via the user parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.securityfocus.com/bid/33875
- http://www.vupen.com/english/advisories/2009/0523
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48881
- https://www.exploit-db.com/exploits/8101
- http://www.securityfocus.com/bid/33875
- http://www.vupen.com/english/advisories/2009/0523
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48881
- https://www.exploit-db.com/exploits/8101
Products affected by CVE-2009-0810
-
cpe:2.3:a:xatrix:xguestbook:2.0