CVE-2009-3119

SQL injection vulnerability in screen.php in the Download System mSF (dsmsf) module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the view_id parameter.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:x-iweb.ru:download_system_msf:*:*:*:*:*:*:*:*
cpe:2.3:a:php-fusion:php-fusion:*:*:*:*:*:*:*:*

Information

Published : 2009-09-09 15:30

Updated : 2009-09-09 21:00


NVD link : CVE-2009-3119

Mitre link : CVE-2009-3119


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

php-fusion

  • php-fusion

x-iweb.ru

  • download_system_msf