MidnightBSD

Advisories for phplivesupport

CVE-2009-4749 HIGH

Multiple SQL injection vulnerabilities in PHP Live! 3.2.1 and 3.2.2 allow remote attackers to execute arbitrary SQL commands via the x parameter to (1) message_box.php and (2) request.php.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
phplivesupport php_live! 3.2.2
phplivesupport php_live! 3.2.1