4 matches found
CVE-2009-4899
pixelpost 1.7.1 has SQL injection...
CVE-2009-4899
pixelpost 1.7.1 has SQL injection...
CVE-2009-4899
pixelpost 1.7.1 has SQL injection...
CVE-2009-4899
The CVE-2009-4899 entry concerns pixelpost 1.7.1 (and related 1.7.1-5 per CNVD) with a SQL injection vulnerability. The root cause is a lack of validation of externally entered SQL statements in the PHP/MySQL-based application, allowing an attacker to execute arbitrary SQL commands. Impact indica...