CVE-2009-1247

Acutecp - SQL Injection

Title source: rule

Description

SQL injection vulnerability in login.php in Acute Control Panel 1.0.0 allows remote attackers to execute arbitrary SQL commands via the username parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by SirGod · textwebappsphp
https://www.exploit-db.com/exploits/8291

References (4)

Scores

EPSS 0.3181
EPSS Percentile 96.7%

Classification

CWE
CWE-89
Status draft

Affected Products (1)

acutecp.rediscussed/acutecp

Timeline

Published Apr 06, 2009
Tracked Since Feb 18, 2026