CVE-2009-4375 in Open Source Security Information Managementinfo

Summary

SQL injection vulnerability in repository/repository_attachment.php in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to execute arbitrary SQL commands via the id_document parameter.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

12/21/2009

Disclosure

12/21/2009

Moderation

VulDB entry created

Entries

VDB-51244 (1)

CPE

ready

CWE

CWE-89 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.00182

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2009-4375
NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-4375
CVE Details	https://www.cvedetails.com/cve/CVE-2009-4375/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!