Lucene search
HistoryOct 02, 2009 - 7:30 p.m.
CVE-2009-3533
cve-2009-3533
sql injection
mrbs
report.php
meeting room booking system
typematch parameter
vulnerability
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
49.1%
SQL injection vulnerability in report.php in Meeting Room Booking System (MRBS) before 1.4.2 allows remote attackers to execute arbitrary SQL commands via the typematch parameter. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
john_beranekmeeting_room_booking_systemRange≤1.4.1
ORjohn_beranekmeeting_room_booking_systemMatch0.1
ORjohn_beranekmeeting_room_booking_systemMatch0.2
ORjohn_beranekmeeting_room_booking_systemMatch0.5
ORjohn_beranekmeeting_room_booking_systemMatch0.6
ORjohn_beranekmeeting_room_booking_systemMatch0.7
ORjohn_beranekmeeting_room_booking_systemMatch0.8
ORjohn_beranekmeeting_room_booking_systemMatch0.8-pre1
ORjohn_beranekmeeting_room_booking_systemMatch0.8-pre2
ORjohn_beranekmeeting_room_booking_systemMatch0.8-pre3
ORjohn_beranekmeeting_room_booking_systemMatch0.8-pre4
ORjohn_beranekmeeting_room_booking_systemMatch0.8-pre5
ORjohn_beranekmeeting_room_booking_systemMatch0.8-pre6
ORjohn_beranekmeeting_room_booking_systemMatch0.8.1
ORjohn_beranekmeeting_room_booking_systemMatch0.9
ORjohn_beranekmeeting_room_booking_systemMatch0.9-pre1
ORjohn_beranekmeeting_room_booking_systemMatch0.9-pre2
ORjohn_beranekmeeting_room_booking_systemMatch0.9.1
ORjohn_beranekmeeting_room_booking_systemMatch0.9.2
ORjohn_beranekmeeting_room_booking_systemMatch1.0
ORjohn_beranekmeeting_room_booking_systemMatch1.0-pre1
ORjohn_beranekmeeting_room_booking_systemMatch1.0-pre2
ORjohn_beranekmeeting_room_booking_systemMatch1.1
ORjohn_beranekmeeting_room_booking_systemMatch1.1-pre1
ORjohn_beranekmeeting_room_booking_systemMatch1.1-pre2
ORjohn_beranekmeeting_room_booking_systemMatch1.2
ORjohn_beranekmeeting_room_booking_systemMatch1.2-pre3
ORjohn_beranekmeeting_room_booking_systemMatch1.2.1
ORjohn_beranekmeeting_room_booking_systemMatch1.2.1-pre1
ORjohn_beranekmeeting_room_booking_systemMatch1.2.1-pre2
ORjohn_beranekmeeting_room_booking_systemMatch1.2.2
ORjohn_beranekmeeting_room_booking_systemMatch1.2.3
ORjohn_beranekmeeting_room_booking_systemMatch1.2.4
ORjohn_beranekmeeting_room_booking_systemMatch1.2.5
ORjohn_beranekmeeting_room_booking_systemMatch1.2.6
ORjohn_beranekmeeting_room_booking_systemMatch1.2.6.1
ORjohn_beranekmeeting_room_booking_systemMatch1.4
Related
nvd
nvd
CVE-2009-3533
2009-10-02 19:30:00
openvas
openvas
Meeting Room Booking System SQL Injection Vulnerability
2009-10-12 00:00:00
Meeting Room Booking System SQL Injection Vulnerability
2009-10-12 00:00:00
cvelist
cvelist
CVE-2009-3533
2009-10-02 19:00:00
nessus
nessus
Meeting Room Booking System typematch Parameter SQL Injection
2010-10-18 00:00:00
prion
prion
Sql injection
2009-10-02 19:30:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
49.1%
Related for CVE-2009-3533