Description

SQL injection vulnerability in the search feature in e107 0.7.16 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Remediation

References

CVE-2009-4084

Related Vulnerabilities

Apache HTTP Server Use After Free Vulnerability (CVE-2019-10082)

phpMyFAQ Uncaught Exception Vulnerability (CVE-2023-0790)

WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Request Forgery (1.22.24)

PHP Out-of-bounds Read Vulnerability (CVE-2019-11040)

WebLogic CVE-2023-21838 Vulnerability (CVE-2023-21838)

Severity

High

Classification

CVE-2009-4084 CWE-138

Tags

Missing Update Known Vulnerabilities