Maxdev - Cwguestbook CVE - CVE Search - CVE Details

Filtered by vendor Maxdev Subscribe

Filtered by product Cwguestbook

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2009-2307	1 Maxdev	2 Cwguestbook, Md-pro	2017-09-18	7.5 HIGH	N/A
SQL injection vulnerability in the CWGuestBook module 2.1 and earlier for MAXdev MDPro (aka MD-Pro) allows remote attackers to execute arbitrary SQL commands via the rid parameter in a viewrecords action to modules.php.

Vulnerabilities (CVE)