CVE-2009-1813

Publication date

2009-05-29 16:24:00

Family

mitre

State

PUBLISHED

Description

Multiple SQL injection vulnerabilities in admin/index.php in Submitter Script 2 allow remote attackers to execute arbitrary SQL commands via (1) the uNev parameter (aka the username field) or (2) the uJelszo parameter (aka the Password field).