CVE

Id
38916  
CVE No.
CVE-2009-1481  
Status
Candidate  
Description
SQL injection vulnerability in action.asp in PuterJam"s Blog (PJBlog3) 3.0.6.170 allows remote attackers to execute arbitrary SQL commands via the cname parameter in a checkAlias action, as exploited in the wild in April 2009. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.  
Phase
Assigned (20090429)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
427312 38916 CVE-2009-1481 MISC:http://downloads.securityfocus.com/vulnerabilities/exploits/34701.vbs  View
427313 38916 CVE-2009-1481 BID:34701  View
427314 38916 CVE-2009-1481 URL:http://www.securityfocus.com/bid/34701  View
427315 38916 CVE-2009-1481 OSVDB:53939  View
427316 38916 CVE-2009-1481 URL:http://osvdb.org/53939  View
427317 38916 CVE-2009-1481 SECUNIA:34897  View
427318 38916 CVE-2009-1481 URL:http://secunia.com/advisories/34897  View
427319 38916 CVE-2009-1481 XF:pjblog3-action-sql-injection(50082)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
42374 JVNDB-2009-003381 eMule Plus のログイン機能におけるサービス運用妨害 (DoS) の脆弱性 eMule Plus のログイン機能には、サービス運用妨害 (無限ループ) 状態となる脆弱性が存在します。 CVE-2009-1485 38916 5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-003381.html  View