Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0516

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2009-0516
Last Modified 01 Sep 2010 12:00:00
Published 10 Feb 2009 07:30:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-0516

Summary

SQL injection vulnerability in the classified page (classified.php) in BusinessSpace 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.

Vulnerable Systems

Application

  • Businessspace 1.2


References

XF - businessspace-index-sql-injection(48606)

BID - 33692

BUGTRAQ - 20090209 [ECHO_ADV_102$2009] BusinessSpace <= 1.2 (id) Remote SQL Injection Vulnerability

MILW0RM - 8011

SECUNIA - 33875


Last Updated: 27 May 2016 10:50:16