Unrated severityNVD Advisory· Published Apr 22, 2010· Updated Jun 16, 2026
CVE-2009-4794
CVE-2009-4794
Description
Multiple SQL injection vulnerabilities in Community CMS 0.5 allow remote attackers to execute arbitrary SQL commands via the (1) article_id parameter to view.php and the (2) a parameter in an event action to calendar.php, reachable through index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:community_cms:community_cms:0.5:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:community_cms:community_cms:0.5:*:*:*:*:*:*:*
- (no CPE)range: = 0.5
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.