2 matches found
CVE-2009-2585
SQL injection vulnerability in index.php in Mlffat 2.2 allows remote attackers to execute arbitrary SQL commands via a member cookie in an account editprofile action, a different vector than CVE-2009-1731...
CVE-2009-2585
CVE-2009-2585: SQL injection in Mlffat 2.2 (index.php) via a member cookie during the editprofile action. Exploitation details are not provided in the connected records beyond the stated vector; CVE-2009-1731 uses a different vector.