CVE

Id
38139  
CVE No.
CVE-2009-0704  
Status
Candidate  
Description
SQL injection vulnerability in search.php in WSN Guest 1.23 allows remote attackers to execute arbitrary SQL commands via the search parameter in an advanced action.  
Phase
Assigned (20090223)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
414906 38139 CVE-2009-0704 MILW0RM:7659  View
414907 38139 CVE-2009-0704 URL:http://www.milw0rm.com/exploits/7659  View
414908 38139 CVE-2009-0704 BID:33097  View
414909 38139 CVE-2009-0704 URL:http://www.securityfocus.com/bid/33097  View
414910 38139 CVE-2009-0704 XF:wsnguest-search-sql-injection(47723)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
44835 JVNDB-2009-005842 SemanticScuttle におけるクロスサイトリクエストフォージェリの脆弱性 SemanticScuttle は、profile ページに関する処理に不備があるため、クロスサイトリクエストフォージェリの脆弱性が存在します。 CVE-2009-0708 38139 6.8 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-005842.html  View