8.5 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
27.8%
Multiple SQL injection vulnerabilities in login.php in DM FileManager 3.9.2, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) Username and (2) Password fields.
osvdb.org/54597
secunia.com/advisories/35167
www.securityfocus.com/bid/35035
www.exploit-db.com/exploits/8741