CVE-2009-3185

Metadata

CVE-2009-3185
7.5
exploit-db.com, vupen.com
2009-09-15
2017-09-19 07:07

Description

SQL injection vulnerability in plugin.php in the Crazy Star plugin 2.0 for Discuz! allows remote authenticated users to execute arbitrary SQL commands via the fmid parameter in a view action.

Related Vulnerabilities