2 matches found
CVE-2009-3308
SQL injection vulnerability in show-cat.php in FanUpdate 2.2.1 allows remote attackers to execute arbitrary SQL commands via the listingid parameter...
CVE-2009-3308
FanUpdate 2.2.1 is affected by CVE-2009-3308: show-cat.php is vulnerable to SQL injection via the listingid parameter, enabling remote attackers to run arbitrary SQL commands. The NVD entry lists a base score of 7.5 (HIGH) with network vector and low complexity. No explicit remediation in the pro...