CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-2895

SQL injection vulnerability in rss.php in Ultimate Regnow Affiliate (URA) 3.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 55.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.exploit-db.com/exploits/9263
http://www.exploit-db.com/exploits/9263

Products affected by CVE-2009-2895

Phpsugar » Ultimate Regnow Affiliate » Version: 3.0

cpe:2.3:a:phpsugar:ultimate_regnow_affiliate:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2895

Products

Pricing

Contact Us