CVE-2009-4796

glFusion <1.1.2 - SQL Injection

Title source: llm

Description

Multiple SQL injection vulnerabilities in the ExecuteQueries function in private/system/classes/listfactory.class.php in glFusion 1.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) order and (2) direction parameters to search.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Nine:Situations:Group · phpwebappsphp

https://www.exploit-db.com/exploits/8302

View Code ZIP pw:eip

References (7)

[Third Party Advisory, VDB Entry] http://osvdb.org/52984

[Vendor Advisory] http://secunia.com/advisories/34519

[Various Sources] http://www.glfusion.org/article.php/security_20090329

[Exploit] http://www.securityfocus.com/bid/34281

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/49498

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/502260/100/0/threaded

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/8302

Scores

EPSS 0.0074

EPSS Percentile 73.0%

Details

CWE

CWE-89

Status published

Products (5)

glfusion/glfusion 1.0.0 (3 CPE variants)

glfusion/glfusion 1.0.1

glfusion/glfusion 1.1.0 (2 CPE variants)

glfusion/glfusion 1.1.1

glfusion/glfusion < 1.1.2

Published Apr 22, 2010

Tracked Since Feb 18, 2026