2 matches found
CVE-2009-3495
SQL injection vulnerability in viewmag.php in Vastal I-Tech DVD Zone allows remote attackers to execute arbitrary SQL commands via the magid parameter, a different vector than CVE-2008-4465...
CVE-2009-3495
CVE-2009-3495 describes an SQL injection in view_mag.php of Vastal I-Tech DVD Zone, exploitable via the mag_id parameter to execute arbitrary SQL commands. This mirrors the vulnerability family seen in CVE-2008-4465 but with a different input vector. The description across sources confirms a remo...