Vulnerability Details CVE-2009-3501
SQL injection vulnerability in students.php in BPowerHouse BPStudents 1.0 allows remote attackers to execute arbitrary SQL commands via the test parameter in a preview action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/58293
- http://packetstormsecurity.org/0909-exploits/bpstudent-sql.txt
- http://secunia.com/advisories/36826
- http://www.vupen.com/english/advisories/2009/2741
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53428
- http://osvdb.org/58293
- http://packetstormsecurity.org/0909-exploits/bpstudent-sql.txt
- http://secunia.com/advisories/36826
- http://www.vupen.com/english/advisories/2009/2741
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53428
Products affected by CVE-2009-3501
-
cpe:2.3:a:bpowerhouse:bpstudents:1.0