CVE-2009-1323
published 2009-04-17CVE-2009-1323: SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.04%
78.8th percentile
SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| webfileexplorer | web_file_explorer | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat5.5MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7w8p-q443-ffm9: SQL injection vulnerability in body
ghsa_unreviewed·2022-05-02
CVE-2009-1323 [HIGH] CWE-89 GHSA-7w8p-q443-ffm9: SQL injection vulnerability in body
SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Red Hat
kernel: smb: client: fix oops due to unset link speed
vendor_redhat·2025-02-27·CVSS 5.5
CVE-2025-21725 [MEDIUM] CWE-369 kernel: smb: client: fix oops due to unset link speed
kernel: smb: client: fix oops due to unset link speed
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix oops due to unset link speed
It isn't guaranteed that NETWORK_INTERFACE_INFO::LinkSpeed will always
be set by the server, so the client must handle any values and then
prevent oopses like below from happening:
Oops: divide error: 0000 [#1] PREEMPT SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 1323 Comm: cat Not tainted 6.13.0-rc7 #2
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-3.fc41
04/01/2014
RIP: 0010:cifs_debug_data_proc_show+0xa45/0x1460 [cifs] Code: 00 00 48
89 df e8 3b cd 1b c1 41 f6 44 24 2c 04 0f 84 50 01 00 00 48 89 ef e8
e7 d0 1b c1 49 8b 44 24 18 31 d2 49 8d 7c 24 28 f7 74 24 18 48 89
c3 e8 6e cf 1b c1 41 8b 6c 24 28 49 8d 7c 24
RSP
No detection rules found.
http://secunia.com/advisories/34648http://www.securityfocus.com/bid/34462https://exchange.xforce.ibmcloud.com/vulnerabilities/49801https://www.exploit-db.com/exploits/8382http://secunia.com/advisories/34648http://www.securityfocus.com/bid/34462https://exchange.xforce.ibmcloud.com/vulnerabilities/49801https://www.exploit-db.com/exploits/8382
2009-04-17
Published