CVE-2009-3529

2009-10-0219:00:00

mitre

www.cve.org

8.2 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

82.0%

JSON

SQL injection vulnerability in index.php in RadScripts RadBids Gold 4 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a view_forum action, a different vector than CVE-2005-1074.

References

secunia.com/advisories/35827

www.exploit-db.com/exploits/9194