CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-4872

Multiple SQL injection vulnerabilities in globepersonnel_login.asp in Logoshows BBS 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password fields.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 28.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.exploit-db.com/exploits/9399
http://www.exploit-db.com/exploits/9399

Products affected by CVE-2009-4872

Logoshows » Logoshows Bbs » Version: 2.0

cpe:2.3:a:logoshows:logoshows_bbs:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-4872

Products

Pricing

Contact Us