2 matches found
CVE-2009-2096
SQL injection vulnerability in house/listingview.php in phpCollegeExchange 0.1.5c allows remote attackers to execute arbitrary SQL commands via the itemnr parameter...
CVE-2009-2096
The CVE-2009-2096 entry describes an SQL injection in phpCollegeExchange 0.1.5c affecting house/listing_view.php via the itemnr parameter. The underlying issue allows remote attackers to execute arbitrary SQL commands. Documented impact is partial confidentiality/integrity/availability, with a ba...