CVE-2009-3528

EPSS 0.27% · P51 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-3528

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

SQL injection vulnerability in Profile.php in MyMsg 1.0.3 allows remote authenticated users to execute arbitrary SQL commands via the uid parameter in a show action.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

al4us mymsg Profile.php SQL注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

MyMsg 1.0.3的Profile.php中存在SQL注入漏洞。远程认证用户可以借助显示操作中的uid参数，执行任意的SQL指令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-3528

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-3528

Please Login to view more intelligence information

http://www.exploit-db.com/exploits/9105exploitx_refsource_EXPLOIT-DB
https://exchange.xforce.ibmcloud.com/vulnerabilities/51635vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2009-3528

Same Patch Batch · n/a · 2009-10-02 · 16 CVEs total

CVE-2009-3529		radscripts radbids index.php SQL注入漏洞
CVE-2009-3530		radscripts radbids storefront.php 跨站脚本攻击漏洞
CVE-2009-3531		universe universe_cms vnews.php SQL注入漏洞
CVE-2009-3532		LogRover login.asp SQL注入漏洞
CVE-2009-3533		john_beranek meeting_room_booking_system report.php SQL注入漏洞
CVE-2009-3534		lionwiki index.php 路径游历漏洞
CVE-2009-3535		allisclear clear_content image.php 路径游历漏洞
CVE-2009-3536		EpicDJSoftware EpicVJ 播放列表文件长字符串导致栈缓冲区溢出漏洞
CVE-2009-3537		EpicDJSoftware EpicVJ 播放列表文件栈缓冲区溢出漏洞
CVE-2009-3538		allisclear clear_content thumb.php 路径游历漏洞
CVE-2009-3539		yourfreeworld ultra_classifieds_pro subclass.php 跨站脚本攻击漏洞
CVE-2009-3540		yourfreeworld ultra_classifieds_pro listads.php 跨站脚本攻击漏洞
CVE-2009-3541		phpgenealogy CoupleDB.php 代码注入漏洞
CVE-2009-3542		kneuro littlesite.php ls.php 路径游历漏洞
CVE-2009-3543		Phenotype CMS _phenotype/admin/login.php SQL注入漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-3528

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-3528

I. Basic Information for CVE-2009-3528

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-3528

III. Intelligence Information for CVE-2009-3528

Same Patch Batch · n/a · 2009-10-02 · 16 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-3528

Leave a comment