MidnightBSD

Advisories for todd_rogers

CVE-2009-4883 HIGH

SQL injection vulnerability in index.php in PHPRecipeBook 2.24 and 2.39 allows remote attackers to execute arbitrary SQL commands via the (1) base_id or (2) course_id parameter in a search action.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
todd_rogers phprecipebook 2.24
todd_rogers phprecipebook 2.39