CVE-2009-0426

2009-02-0500:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.001

Percentile

42.0%

JSON

SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Classified Listings Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.

References

secunia.com/advisories/33482

www.securityfocus.com/bid/33253

exchange.xforce.ibmcloud.com/vulnerabilities/47959

www.exploit-db.com/exploits/7767