CVE-2009-5094

Cmsfaethon Cms Faethon - SQL Injection

Title source: rule

Description

SQL injection vulnerability in info.php in CMS Faethon 2.2.0 Ultimate allows remote attackers to execute arbitrary SQL commands via the item parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Osirys · perlwebappsphp
https://www.exploit-db.com/exploits/8054

References (4)

Scores

EPSS 0.0091
EPSS Percentile 75.8%

Details

CWE
CWE-89
Status published
Products (1)
cmsfaethon/cms_faethon 2.2.0
Published Sep 12, 2011
Tracked Since Feb 18, 2026