CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-4720

SQL injection vulnerability in cgi-bin/gnudip.cgi in GnuDIP 2.1.1 allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539452
http://osvdb.org/56675
http://secunia.com/advisories/36115
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=539452
http://osvdb.org/56675
http://secunia.com/advisories/36115

Products affected by CVE-2009-4720

Gnudip » Gnudip » Version: 2.1.1

cpe:2.3:a:gnudip:gnudip:2.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-4720

Products

Pricing

Contact Us