CVE-2009-1810

Name of the Vulnerable Software and Affected Versions: myColex version 1.4.2

Description: The issue allows remote attackers to execute arbitrary SQL commands, potentially leading to unauthorized data access or modification. This can be achieved via the formUser parameter (also known as the Name field) in the /common/login.php endpoint. Additionally, remote authenticated users can exploit the vulnerability through the ID parameter in a Detail action to various PHP files, including kategorie.php, medium.php, person.php, or schlagwort.php in the modules/ directory. The vulnerability is related to the classes/class.perform.php file.

Recommendations: For myColex version 1.4.2, consider restricting access to the /common/login.php endpoint and the modules/ directory to minimize the risk of exploitation. As a temporary workaround, avoid using the formUser parameter and the ID parameter in the affected PHP files until a patch is available.