Community CMS 'index.php' And 'view.php' SQL Injection Vulnerabilities Network Vulnerability

Summary

Community CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in SQL queries. Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. Community CMS 0.5 is vulnerable earlier versions may also be affected.

Severity

Classification

CVE CVE-2009-4794
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object Remote Code Execution
Advanced Guestbook Index.PHP SQL Injection Vulnerability
AdMentor Login Flaw
Awstats Configuration File Remote Arbitrary Command Execution Vulnerability
Agora CGI Cross Site Scripting

Community CMS 'index.php' and 'view.php' SQL Injection Vulnerabilities

Take action and discover your vulnerabilities