CVE-2002-2304

Myphpsoft Myphplinks - SQL Injection

Title source: rule

Description

SQL injection vulnerability in admin/auth/checksession.php in MyPHPLinks 2.1.9 and 2.2.0 allows remote attackers to execute arbitrary SQL commands via the idsession parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by frog · textwebappsphp
https://www.exploit-db.com/exploits/22088

References (3)

Scores

EPSS 0.0043
EPSS Percentile 62.3%

Classification

CWE
CWE-89
Status draft

Affected Products (2)

myphpsoft/myphplinks
myphpsoft/myphplinks

Timeline

Published Dec 31, 2002
Tracked Since Feb 18, 2026