CVE-2009-2921

Metadata

CVE-2009-2921
7.5
exploit-db.com, vupen.com, exchange.xforce.ibmcloud.com
2009-08-21
2017-09-19 07:07

Description

Multiple SQL injection vulnerabilities in login.php in MOC Designs PHP News 1.1 allow remote attackers to execute arbitrary SQL commands via the (1) newsuser parameter (User field) and (2) newspassword parameter (Password field).

Related Vulnerabilities