Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2009-1657
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-18 May, 2009 | 12:00
Updated At-17 Aug, 2017 | 01:30

Multiple SQL injection vulnerabilities in the Starrating plugin before 0.7.7 for b2evolution allow remote attackers to execute arbitrary SQL commands via unspecified vectors.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.07.5HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
CPE Matches
b2evolution
b2evolution
>>b2evolution>>*
cpe:2.3:a:b2evolution:b2evolution:*:*:*:*:*:*:*:*
b2evolution
b2evolution
>>starrating_plugin>>Versions up to 0.7.6(inclusive)
cpe:2.3:a:b2evolution:starrating_plugin:*:*:*:*:*:*:*:*
b2evolution
b2evolution
>>starrating_plugin>>0.6
cpe:2.3:a:b2evolution:starrating_plugin:0.6:*:*:*:*:*:*:*
b2evolution
b2evolution
>>starrating_plugin>>0.7
cpe:2.3:a:b2evolution:starrating_plugin:0.7:*:*:*:*:*:*:*
b2evolution
b2evolution
>>starrating_plugin>>0.7.5
cpe:2.3:a:b2evolution:starrating_plugin:0.7.5:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-89Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://osvdb.org/54369cve@mitre.org
N/A
http://secunia.com/advisories/35053cve@mitre.org
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=681352&group_id=160495cve@mitre.org
Patch
http://www.securityfocus.com/bid/34899cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/50417cve@mitre.org
N/A
Change History
0Changes found
Details not found