SQL injection vulnerability in index.php in Pixie CMS 1.01a allows remote attackers to execute arbitrary SQL commands via the x parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
References
Link | Resource |
---|---|
http://osvdb.org/52834 | |
http://secunia.com/advisories/34364 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/49334 |
Configurations
Information
Published : 2009-03-25 22:51
Updated : 2017-08-16 18:30
NVD link : CVE-2009-1065
Mitre link : CVE-2009-1065
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
getpixie
- pixie_cms