2 matches found
CVE-2009-3595
CVE-2009-3595: SQL injection in VS PANEL 7.5.5 via Cat_ID in results.php allows remote execution of arbitrary SQL commands. Affected product: VS PANEL (version 7.5.5 noted in the description); vector: HTTP parameter Cat_ID; root cause: improper input handling leading to injection. Connected recor...
CVE-2009-3590
CVE-2009-3590 : The vulnerability affects VS PANEL 7.3.6 in the showcat.php component, where unsafely handling the Cat_ID parameter leads to a SQL injection vulnerability that allows remote attackers to execute arbitrary SQL commands. This is documented in the CVE entry and corroborated by multip...