mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-30 18:56:19 +00:00
772 B
772 B
CVE-2009-3505
Description
SQL injection vulnerability in view_news.php in Vastal I-Tech MMORPG Zone allows remote attackers to execute arbitrary SQL commands via the news_id parameter. NOTE: the game_id vector is already covered by CVE-2008-4460.
POC
Reference
- http://packetstormsecurity.org/0909-exploits/mmorpgzone-sql.txt
- http://packetstormsecurity.org/0909-exploits/mmorpgzone-sql.txt
Github
No PoCs found on GitHub currently.