CVE-2009-2927
published 2009-08-21CVE-2009-2927: SQL injection vulnerability in DetailFile.php in DigitalSpinners DS CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the nFileId parameter.
PriorityP341high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
0.93%
56.1th percentile
SQL injection vulnerability in DetailFile.php in DigitalSpinners DS CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the nFileId parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| digitalspinners | ds_cms | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat6.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5qcf-9mhg-gcxv: SQL injection vulnerability in DetailFile
ghsa_unreviewed·2022-05-02
CVE-2009-2927 [HIGH] CWE-89 GHSA-5qcf-9mhg-gcxv: SQL injection vulnerability in DetailFile
SQL injection vulnerability in DetailFile.php in DigitalSpinners DS CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the nFileId parameter.
Red Hat
pidgin incomplete fix for CVE-2008-2927
vendor_redhat·2009-05-02·CVSS 6.8
CVE-2009-1376 [MEDIUM] pidgin incomplete fix for CVE-2008-2927
pidgin incomplete fix for CVE-2008-2927
Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin (formerly Gaim) before 2.5.6 on 32-bit platforms allow remote attackers to execute arbitrary code via a malformed SLP message with a crafted offset value, leading to buffer overflows. NOTE: this issue exists because of an incomplete fix for CVE-2008-2927.
No detection rules found.
Bugzilla
CVE-2009-1376 CVE-2009-1373 CVE-2009-1374 CVE-2009-1375 Multiple pidgin vulnerabilities
bugzilla·2009-05-26·CVSS 6.8
CVE-2009-1376 [MEDIUM] CVE-2009-1376 CVE-2009-1373 CVE-2009-1374 CVE-2009-1375 Multiple pidgin vulnerabilities
CVE-2009-1376 CVE-2009-1373 CVE-2009-1374 CVE-2009-1375 Multiple pidgin vulnerabilities
This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in all affected branches.
For comments that are specific to the vulnerability please use bugs filed against "Security Response" product referenced in "Blocks" field.
bug #500493: CVE-2009-1376 pidgin incomplete fix for CVE-2008-2927
bug #500488: CVE-2009-1373 pidgin file transfer buffer overflow
bug #500490: CVE-2009-1374 pidgin DoS when decrypting qq packets
bug #500491: CVE-2009-1375 pidgin PurpleCircBuffer corruption
When creating a Bodhi update request, please include the bug IDs of the respective parent bugs filed against the "Security Response" product.
Please mention CVE
Bugzilla
CVE-2009-1376 pidgin incomplete fix for CVE-2008-2927
bugzilla·2009-05-12·CVSS 6.8
CVE-2009-1376 [MEDIUM] CVE-2009-1376 pidgin incomplete fix for CVE-2008-2927
CVE-2009-1376 pidgin incomplete fix for CVE-2008-2927
The integer overflow fix for CVE-2008-2927 was incomplete on 32 bit
platforms. If a Pidgin user can receive a specially crafted MSN message,
it may be possible to execute arbitrary code with the permissions of the
user running Pidgin.
This flaw is only exploitable by individuals who can message a user, which
is controlled by the Pidgin privacy setting. The default setting is to
only allow messages from users in the buddy list.
Discussion:
Link to upstream advisory:
http://www.pidgin.im/news/security//?id=32
---
This issue has been addressed in following products:
Red Hat Enterprise Linux 3
Via RHSA-2009:1059 https://rhn.redhat.com/errata/RHSA-2009-1059.html
---
This issue has been addressed in following products:
Red Hat Ent
2009-08-21
Published