Lucene search
MitreCVE-2009-1913HistoryJun 04, 2009 - 4:30 p.m.
CVE-2009-1913
2009-06-0416:30:00
CWE-89
mitre
web.nvd.nist.gov
23
cve
2009
1913
sql injection
luxbum
manager.php
security vulnerability
nvd
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
8.8
Confidence
Low
EPSS
0.019
Percentile
88.9%
SQL injection vulnerability in manager.php in LuxBum 0.5.5, when magic_quotes_gpc is disabled and dotclear authentication is used, allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action.
Affected configurations
Node
luxbumluxbumMatch0.5.5
Related
cvelist
cvelist
CVE-2009-1913
2009-06-04 16:00:00
nvd
nvd
CVE-2009-1913
2009-06-04 16:30:00
prion
prion
Sql injection
2009-06-04 16:30:00
exploitdb
exploitdb
Luxbum 0.5.5/stable - Authentication Bypass
2009-05-08 00:00:00
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
8.8
Confidence
Low
EPSS
0.019
Percentile
88.9%
Related for CVE-2009-1913