CVE-2009-1481

2009-04-2918:06:00

mitre

www.cve.org

8 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

54.1%

JSON

SQL injection vulnerability in action.asp in PuterJam’s Blog (PJBlog3) 3.0.6.170 allows remote attackers to execute arbitrary SQL commands via the cname parameter in a checkAlias action, as exploited in the wild in April 2009. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.