Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0339

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2009-0339
Last Modified 30 Jan 2009 12:00:00
Published 29 Jan 2009 01:30:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-0339

Summary

SQL injection vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote attackers to execute arbitrary SQL commands via the itemID parameter in a view action.

Vulnerable Systems

Application

  • Dmxready Blog Manager Nil


References

XF - blogmanager-incwebblogmanager-sql-injection(48054)

BID - 33314

BUGTRAQ - 20090116 DMXReady Blog Manager (SQL/XSS)

SECUNIA - 33601

MISC - http://dmxready.helpserve.com/index.php?_m=news&_a=viewnews&newsid=12


Last Updated: 27 May 2016 10:50:12