CVE-2009-2451
14.07.2009, 14:30
Multiple SQL injection vulnerabilities in index.php in MIM:InfiniX 1.2.003 and possibly earlier versions allow remote attackers to execute arbitrary SQL commands via the (1) month and (2) year parameters in a calendar action, or (3) a search term in the search form.
| Vendor | Product | Version |
|---|---|---|
| mim.infinix | infinix | 𝑥 ≤ 1.2.003 |
𝑥
= Vulnerable software versions
References