CVE-2009-4432

2009-12-2818:27:00

mitre

www.cve.org

8.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

27.8%

JSON

SQL injection vulnerability in index.php in CodeMight VideoCMS 3.1 allows remote attackers to execute arbitrary SQL commands via the v parameter in a video action.

References

packetstormsecurity.org/0912-exploits/videocms-sql.txt

secunia.com/advisories/37889

www.exploit-db.com/exploits/10586