CVE-2009-0111

Goople CMS <1.8.2 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in frontpage.php in Goople CMS 1.8.2 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by darkjoker · perlwebappsphp

https://www.exploit-db.com/exploits/7683

View Code ZIP pw:eip

References (4)

[Vendor Advisory] http://secunia.com/advisories/33393

[Exploit] http://www.securityfocus.com/bid/33135

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7683

[Third Party Advisory] http://securityreason.com/securityalert/4894

Scores

EPSS 0.0049

EPSS Percentile 65.4%

Details

CWE

CWE-89

Status published

Products (1)

goople_cms/goople_cms < 1.8.2

Published Jan 09, 2009

Tracked Since Feb 18, 2026