CVE-2009-2605

2009-07-2714:22:00

mitre

www.cve.org

8.5 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

41.4%

JSON

Multiple SQL injection vulnerabilities in adminquery.php in Traidnt Up 2.0 allow remote attackers to execute arbitrary SQL commands via (1) trupuser and (2) truppassword cookies to uploadcp/index.php.

References

osvdb.org/54809

secunia.com/advisories/35273

www.exploit-db.com/exploits/8831

exchange.xforce.ibmcloud.com/vulnerabilities/50866