CVE-2009-1024

Beerwin Phplinkadmin - SQL Injection

Title source: rule

Description

Multiple SQL injection vulnerabilities in Beerwin PHPLinkAdmin 1.0 allow remote attackers to execute arbitrary SQL commands via the linkid parameter to edlink.php, and unspecified other vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by SirGod · textwebappsphp

https://www.exploit-db.com/exploits/8216

View Code ZIP pw:eip

References (6)

[Vendor Advisory] http://secunia.com/advisories/34323

[Exploit] http://www.securityfocus.com/bid/34129

[Vendor Advisory] http://www.vupen.com/english/advisories/2009/0733

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/49265

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/8216

[Third Party Advisory, VDB Entry] http://osvdb.org/52778

Scores

EPSS 0.0103

EPSS Percentile 77.0%

Classification

CWE

CWE-89

Status draft

Affected Products (1)

beerwin/phplinkadmin

Timeline

Published Mar 20, 2009

Tracked Since Feb 18, 2026