CVE-2009-1787

2009-05-2616:00:00

mitre

www.cve.org

AI Score

8.5

Confidence

Low

EPSS

0.001

Percentile

31.9%

JSON

Multiple SQL injection vulnerabilities in PHP Dir Submit (aka WebsiteSubmitter and Submitter Script) allow remote attackers to bypass authentication and gain administrative access via the (1) username and (2) password parameters.

References

secunia.com/advisories/35125

www.securityfocus.com/bid/35003

www.vupen.com/english/advisories/2009/1365

www.exploit-db.com/exploits/8710