CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-3325

SQL injection vulnerability in the Focusplus Developments Survey Manager (com_surveymanager) component 1.5.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the stype parameter in an editsurvey action to index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.1%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.exploit-db.com/exploits/9721
http://www.securityfocus.com/bid/36464
http://www.vupen.com/english/advisories/2009/2705
http://www.exploit-db.com/exploits/9721
http://www.securityfocus.com/bid/36464
http://www.vupen.com/english/advisories/2009/2705

Products affected by CVE-2009-3325

Focusdev » Com Surveymanager » Version: 1.5.0

cpe:2.3:a:focusdev:com_surveymanager:1.5.0
Joomla » Joomla » Version: Any

cpe:2.3:a:joomla:joomla:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-3325

Products

Pricing

Contact Us