CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-2093

SQL injection vulnerability in the console in IBM WebSphere Partner Gateway (WPG) Enterprise 6.0 before FP8, 6.1 before FP3, 6.1.1 before FP2, and 6.2 before FP1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.2%

CVSS Severity

CVSS v2 Score 6.5

References

http://secunia.com/advisories/36295
http://www-01.ibm.com/support/docview.wss?uid=swg21382117
http://www-1.ibm.com/support/docview.wss?uid=swg1JR32386
http://www-1.ibm.com/support/docview.wss?uid=swg1JR32607
http://www-1.ibm.com/support/docview.wss?uid=swg1JR32608
http://www-1.ibm.com/support/docview.wss?uid=swg1JR32609
http://www-1.ibm.com/support/docview.wss?uid=swg1JR33176
http://www.vupen.com/english/advisories/2009/2292
https://exchange.xforce.ibmcloud.com/vulnerabilities/52393
http://secunia.com/advisories/36295
http://www-01.ibm.com/support/docview.wss?uid=swg21382117
http://www-1.ibm.com/support/docview.wss?uid=swg1JR32386
http://www-1.ibm.com/support/docview.wss?uid=swg1JR32607
http://www-1.ibm.com/support/docview.wss?uid=swg1JR32608
http://www-1.ibm.com/support/docview.wss?uid=swg1JR32609
http://www-1.ibm.com/support/docview.wss?uid=swg1JR33176
http://www.vupen.com/english/advisories/2009/2292
https://exchange.xforce.ibmcloud.com/vulnerabilities/52393

Products affected by CVE-2009-2093

Ibm » Websphere Partner Gateway » Version: 6.0.0

cpe:2.3:a:ibm:websphere_partner_gateway:6.0.0
Ibm » Websphere Partner Gateway » Version: 6.1.0

cpe:2.3:a:ibm:websphere_partner_gateway:6.1.0
Ibm » Websphere Partner Gateway » Version: 6.1.1

cpe:2.3:a:ibm:websphere_partner_gateway:6.1.1
Ibm » Websphere Partner Gateway » Version: 6.2

cpe:2.3:a:ibm:websphere_partner_gateway:6.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2093

Products

Pricing

Contact Us