Lucene search
K

4 matches found

NVD
NVD
added 2010/07/12 1:27 p.m.11 views

CVE-2009-4925

Multiple SQL injection vulnerabilities in Portale e-commerce Creasito aka creasito e-commerce content manager 1.3.16, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the username parameter to 1 admin/checkuser.php and 2 checkuser.php...

6.8CVSS8.5AI score0.00913EPSS
Exploits1References4
Prion
Prion
added 2010/07/12 1:27 p.m.11 views

Sql injection

Multiple SQL injection vulnerabilities in Portale e-commerce Creasito aka creasito e-commerce content manager 1.3.16, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the username parameter to 1 admin/checkuser.php and 2 checkuser.php...

6.8CVSS9.2AI score0.00913EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2010/07/09 5:0 p.m.47 views

CVE-2009-4925

Creasito e-commerce content manager (Portale Creasito) 1.3.16 is affected by multiple SQL injection vulnerabilities. The issue allows remote attackers to inject arbitrary SQL via the username parameter to admin/checkuser.php and checkuser.php when magic_quotes_gpc is disabled. Affected product/ve...

6.8CVSS8.8AI score0.00913EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2010/07/09 5:0 p.m.16 views

CVE-2009-4925

Multiple SQL injection vulnerabilities in Portale e-commerce Creasito aka creasito e-commerce content manager 1.3.16, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the username parameter to 1 admin/checkuser.php and 2 checkuser.php...

8.5AI score0.00913EPSS
Exploits1References4
Rows per page
Query Builder