CVE-2009-2892

Publication date

2009-08-20 17:00:00

Family

mitre

State

PUBLISHED

Description

Multiple SQL injection vulnerabilities in header.php in Scripteen Free Image Hosting Script 2.3 allow remote attackers to execute arbitrary SQL commands via a (1) cookid or (2) cookgid cookie.