CVE-2009-2734

NONECVSS 0.0

0.0

SQL injection vulnerability in the get_employee function in classweekreport.inc in Achievo before 1.4.0 allows remote attackers to execute arbitrary SQL commands via the userid parameter (aka user_id variable) to dispatch.php.

🔗 References (14)

cve@mitrehttp://secunia.com/advisories/37035
cve@mitrehttp://securitytracker.com/id?1023017
cve@mitrehttp://www.achievo.org/download/releasenotes/1_4_0
cve@mitrehttp://www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txt
cve@mitrehttp://www.securityfocus.com/archive/1/507131/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/36660
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/53743
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/37035
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1023017
af854a3a-2127-422b-91ae-364da2661108http://www.achievo.org/download/releasenotes/1_4_0
af854a3a-2127-422b-91ae-364da2661108http://www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txt
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/507131/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/36660
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/53743

Is Your Infrastructure Affected by CVE-2009-2734?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-2734

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-2734?