2 matches found
CVE-2009-4256
AlefMentor is affected by SQL injection vulnerabilities in cource.php for versions 2.0 and 2.2. The vulnerability is triggered via the cont_id and courc_id parameters in the pregled action, allowing remote attackers to execute arbitrary SQL commands. CVSS base score is 7.5 ( HIGH ); impact includ...
CVE-2009-4256
Multiple SQL injection vulnerabilities in cource.php in AlefMentor 2.0 and 2.2 allow remote attackers to execute arbitrary SQL commands via the 1 contid and 2 courcid parameters in a pregled action. NOTE: some of these details are obtained from third party information...