CVE-2009-1066

N/A Unknown

Published: March 26, 2009 Modified: April 23, 2026

Description

SQL injection vulnerability in the referral function in admin/lib/lib_logs.php in Pixie CMS 1.01a allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header in a request.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://archives.neohapsis.com/archives/fulldisclosure/2009-03/0324.html

Source: cve@mitre.org

Exploit

http://lampsecurity.org/Pixie-CMS-Multiple-Vulnerabilities

Source: cve@mitre.org

Exploit URL Repurposed

http://osvdb.org/52833

Source: cve@mitre.org

http://secunia.com/advisories/34364

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/34189

Source: cve@mitre.org

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/49335

Source: cve@mitre.org

https://www.exploit-db.com/exploits/8252

Source: cve@mitre.org

http://archives.neohapsis.com/archives/fulldisclosure/2009-03/0324.html