Vulnerability Description
SQL injection vulnerability in ladders.php in Elite Gaming Ladders 3.2 allows remote attackers to execute arbitrary SQL commands via the platform parameter.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Eliteladders | Elite Gaming Ladders | 3.2 |
Related Weaknesses (CWE)
References
- http://osvdb.org/58168
- http://secunia.com/advisories/36732Vendor Advisory
- http://www.exploit-db.com/exploits/9702
- http://www.vupen.com/english/advisories/2009/2685Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53317
- http://osvdb.org/58168
- http://secunia.com/advisories/36732Vendor Advisory
- http://www.exploit-db.com/exploits/9702
- http://www.vupen.com/english/advisories/2009/2685Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53317
FAQ
What is CVE-2009-3314?
CVE-2009-3314 is a vulnerability with a CVSS score of 7.5 (HIGH). SQL injection vulnerability in ladders.php in Elite Gaming Ladders 3.2 allows remote attackers to execute arbitrary SQL commands via the platform parameter.
How severe is CVE-2009-3314?
CVE-2009-3314 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3314?
Check the references section above for vendor advisories and patch information. Affected products include: Eliteladders Elite Gaming Ladders.