CVE-2009-1026

2009-03-2000:00:00

mitre

www.cve.org

AI Score

8.7

Confidence

Low

EPSS

0.001

Percentile

33.1%

JSON

Multiple SQL injection vulnerabilities in login.php in Kim Websites 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.

References

www.securityfocus.com/bid/34116

www.vupen.com/english/advisories/2009/0732

exchange.xforce.ibmcloud.com/vulnerabilities/49259

www.exploit-db.com/exploits/8209