2 matches found
CVE-2009-4221
SQL injection vulnerability in classified.php in phpBazar 2.1.1fix and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-3767...
CVE-2009-4221
CVE-2009-4221 affects phpBazar’s classified.php vulnerability in versions up to 2.1.1fix and earlier, where the catid parameter allows remote SQL injection due to unsanitized input. This enables arbitrary SQL execution as described in the vulnerability text. No explicit remediation details are pr...