SQL injection vulnerability in include.php in phpBugTracker 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/35125 | |
http://www.vupen.com/english/advisories/2009/1432 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:23:59
Updated: 2022-10-03T16:23:59
Reserved: 2022-10-03T00:00:00
Link: CVE-2009-1851
JSON object: View
NVD Information
Status : Analyzed
Published: 2009-06-01T19:30:00.343
Modified: 2009-06-02T04:00:00.000
Link: CVE-2009-1851
JSON object: View
Redhat Information
No data.
CWE