CVE-2009-2021

SQL injection vulnerability in search.php in Virtue Classifieds allows remote attackers to execute arbitrary SQL commands via the category parameter.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
VendorProductVersion
virtuenetzvirtue_classifieds
*
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/35376
http://www.vupen.com/english/advisories/2009/1525
https://www.exploit-db.com/exploits/8892
http://secunia.com/advisories/35376
http://www.vupen.com/english/advisories/2009/1525
https://www.exploit-db.com/exploits/8892