CVE-2009-3499

2009-09-30T15:30:00
ID CVE-2009-3499
Type cve
Reporter cve@mitre.org
Modified 2009-10-01T04:00:00

Description

SQL injection vulnerability in employee.aspx in BPowerHouse BPLawyerCaseDocuments 1.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter.