CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-3336

SQL injection vulnerability in auction_details.php in PHP Pro Bid allows remote attackers to execute arbitrary SQL commands via the auction_id parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 29.5%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.exploit-db.com/exploits/9665
http://www.securityfocus.com/bid/36389
http://www.vupen.com/english/advisories/2009/2661
http://www.exploit-db.com/exploits/9665
http://www.securityfocus.com/bid/36389
http://www.vupen.com/english/advisories/2009/2661

Products affected by CVE-2009-3336

Phpprobid » Php Pro Bid » Version: Any

cpe:2.3:a:phpprobid:php_pro_bid:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-3336

Products

Pricing

Contact Us