CVE-2009-2423

2022-10-0316:24:06

mitre

www.cve.org

ebay clone 2009

sql injection

category.php

remote attackers

arbitrary sql commands

8.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

48.8%

JSON

SQL injection vulnerability in category.php in Ebay Clone 2009 allows remote attackers to execute arbitrary SQL commands via the cate_id parameter in a list action.

References

packetstorm.linuxsecurity.com/0907-exploits/ebayclone2009-sqlxss.txt

secunia.com/advisories/35713