SQL injection vulnerability in index.php in Mlffat 2.2 allows remote attackers to execute arbitrary SQL commands via a member cookie in an account editprofile action, a different vector than CVE-2009-1731.
Max CVSS
7.5
EPSS Score
0.10%
Published
2009-07-24
Updated
2017-09-19
SQL injection vulnerability in panel/index.php in MLFFAT 2.1 allows remote attackers to execute arbitrary SQL commands via a base64-encoded supervisor cookie.
Max CVSS
7.5
EPSS Score
0.30%
Published
2009-05-20
Updated
2017-08-17
2 vulnerabilities found