CVE-2009-1034

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0060%

EPSS Percentile27.57th

Published2009年3月20日

Last Modified2026年4月23日

Vulnerability Description

SQL injection vulnerability in the Tasklist module 5.x-1.x before 5.x-1.3 and 5.x-2.x before 5.x-2.0-alpha1, a module for Drupal, allows remote attackers to execute arbitrary SQL commands via values in the URI.

Affected Platforms (CPE)

📦

Drupal

Tasklist

<= 5.x-1.x

📦

Drupal

Tasklist

<= 5.x-2.x

References & Advisories

🔗 http://drupal.org/node/406316

🔗 http://secunia.com/advisories/34376

🔗 http://www.osvdb.org/52781

🔗 http://www.securityfocus.com/bid/34171

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/49320

🔗 http://drupal.org/node/406316

🔗 http://secunia.com/advisories/34376

🔗 http://www.osvdb.org/52781

Vulnerability Description

Affected Platforms (CPE)

Tasklist

Tasklist

References & Advisories

相关漏洞威胁