SQL Injection Vulnerability in phpBugTracker by PHPBugTracker
CVE-2009-1851

Currently unrated

Key Information:

Vendor

Benjamin Curtis

Status
PHPbugtracker
Vendor
CVE Published:
1 June 2009

What is CVE-2009-1851?

An SQL injection vulnerability exists in phpBugTracker's include.php file, which could allow remote attackers to execute arbitrary SQL commands through manipulated user input in the username parameter. This flaw highlights the importance of input validation and proper sanitization techniques to protect against such malicious attacks.

References

http://www.securityfocus.com/bid/35125
vdb-entryx_refsource_BID
http://www.vupen.com/english/advisories/2009/1432
vdb-entryx_refsource_VUPEN

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.