Lucene search
MitreCVELIST:CVE-2009-3703HistoryDec 18, 2009 - 7:00 p.m.
CVE-2009-3703
2009-12-1819:00:00
mitre
www.cve.org
Multiple SQL injection vulnerabilities in the WP-Forum plugin before 2.4 for WordPress allow remote attackers to execute arbitrary SQL commands via (1) the search_max parameter in a search action to the default URI, related to wpf.class.php; (2) the forum parameter to an unspecified component, related to wpf.class.php; (3) the topic parameter in a viewforum action to the default URI, related to the remove_topic function in wpf.class.php; or the id parameter in a (4) editpost or (5) viewtopic action to the default URI, related to wpf-post.php.
Related
nvd
nvd
CVE-2009-3703
2009-12-18 19:30:00
exploitpack
exploitpack
WordPress Plugin WP-Forum 2.3 - SQL Injection Blind SQL Injection
2009-12-16 00:00:00
patchstack
patchstack
WordPress WP Forum Server Plugin <= 2.3 - Multiple SQL Injection
2009-10-15 00:00:00
prion
prion
Sql injection
2009-12-18 19:30:00
seebug
seebug
WP-Forum <= 2.3 SQL Injection & Blind SQL Injection vulnerabilities
2009-12-16 00:00:00
WP-Forum <= 2.3 - SQL Injection & Blind SQL Injection vulnerabilities
2014-07-01 00:00:00
WordPress WP-Forumζδ»Άε€δΈͺSQL注ε
₯ζΌζ΄
2009-12-23 00:00:00
cve
cve
CVE-2009-3703
2009-12-18 19:30:00
packetstorm
packetstorm
WP-Forum 2.3 SQL Injection
2009-12-16 00:00:00
wpvulndb
wpvulndb
WP Forum < 2.4 - Multiple SQL Injection
2009-09-28 00:00:00
securityvulns
securityvulns
exploitdb
exploitdb
WordPress Plugin WP-Forum 2.3 - SQL Injection / Blind SQL Injection
2009-12-16 00:00:00