2 matches found
CVE-2009-1024
Beerwin PHPLinkAdmin 1.0 contains multiple SQL injection vulnerabilities exploitable via the linkid parameter to edlink.php (and unspecified vectors). A remote attacker could potentially manipulate database queries to access or modify data. NVD/NVD-derived data report CVE-2009-1024 with a base sc...
CVE-2009-1025
The CVE-2009-1025 entry concerns Beerwin PHPLinkAdmin 1.0, where a PHP remote file inclusion in linkadmin.php via the page parameter allows remote attackers to execute arbitrary PHP code. The vulnerability is described as a PHP RFI with an impact rating of High (CVSSv2 base score 7.5). Public ref...