CVE-2009-3082

Snowhall Silurus System - SQL Injection

Title source: rule

Description

SQL injection vulnerability in wcategory.php in Snow Hall Silurus System 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploits (1)

exploitdb WORKING POC
webappsphp
https://www.exploit-db.com/exploits/9538

References (1)

Scores

EPSS 0.0017
EPSS Percentile 38.6%

Classification

CWE
CWE-89
Status draft

Affected Products (1)

snowhall/silurus_system

Timeline

Published Sep 04, 2009
Tracked Since Feb 18, 2026