CVE-2009-3217

2009-09-16T19:30:00
ID CVE-2009-3217
Type cve
Reporter cve@mitre.org
Modified 2017-09-19T01:29:00

Description

SQL injection vulnerability in the admin module in iWiccle 1.01 allows remote attackers to execute arbitrary SQL commands via the member_id parameter in an edit_user action to index.php.