2 matches found
CVE-2009-2891
CVE-2009-2891 describes an SQL injection in list.php of PHP Scripts Now Riddles, exploitable via the catid parameter. The underlying issue is improper handling of user-supplied input, enabling remote attackers to execute arbitrary SQL commands. Affected component: list.php within the PHP Scripts ...
CVE-2009-2891
creationtimestamp| type| source ---|---|--- 2009-08-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/34903...