CVE-2009-0394
PLEs CMS 1.0 beta 4.2 - SQL Injection
Title source: llmDescription
SQL injection vulnerability in login.php in Pre Lecture Exercises (PLEs) CMS 1.0 beta 4.2 allows remote attackers to execute arbitrary SQL commands via the school parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by darkjoker · phpwebappsphp
https://www.exploit-db.com/exploits/7917
Scores
EPSS
0.0036
EPSS Percentile
58.3%
Details
CWE
CWE-89
Status
published
Products (1)
ple_cms/ple_cms
1.0 beta_4.2
Published
Feb 03, 2009
Tracked Since
Feb 18, 2026