Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0709


Vulnerability Score 7.5 7.5
CVE Id CVE-2009-0709
Last Modified 24 Feb 2009 12:00:00
Published 23 Feb 2009 10:30:04
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in login.php in PHPFootball 1.6 allows remote attackers to execute arbitrary SQL commands via the user parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems


  • Vlad Alexa Mancini Phpfootball 1.6


XF - phpfootball-login-sql-injection(47720)

SECUNIA - 33367

OSVDB - 51104

Last Updated: 27 May 2016 10:50:20