2 matches found
CVE-2009-2236
CVE-2009-2236 describes an SQL injection vulnerability in the yad-admin/login.php of Your Article Directory . The issue allows remote attackers to execute arbitrary SQL commands via the txtAdminEmail parameter. The entry lists a base CVSS v2 score of 7.5 (HIGH) with network attack vector and no a...
CVE-2009-2235
The CVE-2009-2235 entry concerns a SQL injection vulnerability in page.php of Your Articles Directory. The vulnerability arises from unsafely handling the id parameter, allowing remote attackers to execute arbitrary SQL commands. Documented impact includes the ability to influence the database, w...