{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T15:32:11.522","vulnerabilities":[{"cve":{"id":"CVE-2009-1851","sourceIdentifier":"cve@mitre.org","published":"2009-06-01T19:30:00.343","lastModified":"2026-06-16T23:08:11.790","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"SQL injection vulnerability in include.php in phpBugTracker 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.  NOTE: the provenance of this information is unknown; the details are obtained solely from third party information."},{"lang":"es","value":"Vulnerabilidad de inyección SQL en include.php en phpBugTracker v1.0.4 permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro \"username\". NOTA: la procedencia de esta información es desconocida; los detalles se han obtenido exclusivamente de información de terceros."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:*:*:*:*:*:*:*:*","versionEndIncluding":"1.0.4","matchCriteriaId":"DF93E6C1-91C6-4212-8D72-A20FC038CFB1"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.1.0:*:*:*:*:*:*:*","matchCriteriaId":"FF3BA80E-DCDB-4626-9432-2D9C4A174974"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.1.1:*:*:*:*:*:*:*","matchCriteriaId":"3B150B31-055A-481E-BE37-974873D8CA16"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.1.2:*:*:*:*:*:*:*","matchCriteriaId":"46680DAC-C1E6-4D8F-A98A-C95A9245CECF"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.1.3:*:*:*:*:*:*:*","matchCriteriaId":"5125EEFE-782B-4C91-8F1F-6D978A0B72DF"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.1.4:*:*:*:*:*:*:*","matchCriteriaId":"5BD640E3-B782-4C19-BDB0-408F88C38797"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.1.5:*:*:*:*:*:*:*","matchCriteriaId":"AA146ADC-6FCD-4D48-92D2-267808A97900"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.1.6:*:*:*:*:*:*:*","matchCriteriaId":"0732EFEF-8637-491E-AF11-564FE3C6B7E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.1.7:*:*:*:*:*:*:*","matchCriteriaId":"153F372C-838F-4B9C-AB38-C6004D0B0E19"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.2.0:*:*:*:*:*:*:*","matchCriteriaId":"29D95754-6DF1-46AF-A926-B1284246E033"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.2.1:*:*:*:*:*:*:*","matchCriteriaId":"02A33199-2806-4C02-8B18-D4A28B420213"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.3.0:*:*:*:*:*:*:*","matchCriteriaId":"98CFE7AD-074F-4654-8DB1-4D3B2C41A4E8"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.3.1:*:*:*:*:*:*:*","matchCriteriaId":"E082D90C-2CAD-4F11-A073-C4F59A17FAD3"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.3.2:*:*:*:*:*:*:*","matchCriteriaId":"82BCF58C-71DE-4647-B6F4-0F9D5FFFAF3E"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.3.3:*:*:*:*:*:*:*","matchCriteriaId":"B69D4976-25F3-4F7A-BCD9-10BFA8104C26"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.4.0:*:*:*:*:*:*:*","matchCriteriaId":"178541BF-BB04-4EEE-BFDE-DE18B34A75E5"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.5.0:*:*:*:*:*:*:*","matchCriteriaId":"BC5BFAE1-CF8F-44B9-89B2-DD5516F12424"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.5.1:*:*:*:*:*:*:*","matchCriteriaId":"834BB5B8-6D35-4472-9BE9-8B2854EAA2AD"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.6.0:*:*:*:*:*:*:*","matchCriteriaId":"BB976AE8-32EC-42E4-B322-1486EE2DB2A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.6.1:*:*:*:*:*:*:*","matchCriteriaId":"4B68B176-77CC-47BC-9652-D198AF537322"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.6.2:*:*:*:*:*:*:*","matchCriteriaId":"DA30267F-FD6F-413E-8A07-BA900751C163"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.7.0:*:*:*:*:*:*:*","matchCriteriaId":"191454A8-1398-4F9A-95FD-68FA5B8161C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.7.1:*:*:*:*:*:*:*","matchCriteriaId":"571B8160-444F-449C-BD44-E906B258FD27"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.7.2:*:*:*:*:*:*:*","matchCriteriaId":"7D24C18E-94BB-4B37-85E2-BA5AB85BBE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.8.0:*:*:*:*:*:*:*","matchCriteriaId":"4DE262CB-5CA3-44F8-86D5-9935EECF366C"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.8.1:*:*:*:*:*:*:*","matchCriteriaId":"D2D6258F-08EC-439E-A2DA-F220EC660887"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.8.2:*:*:*:*:*:*:*","matchCriteriaId":"61386352-BC17-4B68-9730-647175A6E40B"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.9.0:*:*:*:*:*:*:*","matchCriteriaId":"3D6E5F7F-173A-4DE3-BA1B-E2F809ECF306"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:0.9.1:*:*:*:*:*:*:*","matchCriteriaId":"2B5DB887-5E14-4331-88B0-414501D5EA11"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:1.0:*:*:*:*:*:*:*","matchCriteriaId":"78B0A940-44AA-414E-BA14-F8A480ECDA52"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:1.0.1:*:*:*:*:*:*:*","matchCriteriaId":"18B9C1A9-D65B-4AF4-8154-248D8A92E347"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:1.0.3:*:*:*:*:*:*:*","matchCriteriaId":"0297FBB7-1C0F-40E4-9CEE-3EC6FCE32B99"},{"vulnerable":true,"criteria":"cpe:2.3:a:benjamin_curtis:phpbugtracker:1.x:dev1:*:*:*:*:*:*","matchCriteriaId":"5FCE2423-CD30-48C3-A0B9-187FB1AF77C4"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/35125","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2009/1432","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/35125","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2009/1432","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}