CVE-2009-0431

EUVD-2009-0435
SQL injection vulnerability in Default.asp in LinksPro Standard Edition allows remote attackers to execute arbitrary SQL commands via the OrderDirection parameter.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
Common Weakness Enumeration
References
http://packetstormsecurity.org/0901-exploits/linkspro-sql.txt
http://www.securityfocus.com/bid/33305
http://packetstormsecurity.org/0901-exploits/linkspro-sql.txt
http://www.securityfocus.com/bid/33305