CVE-2009-4889

2010-06-11T14:30:00
ID CVE-2009-4889
Type cve
Reporter cve@mitre.org
Modified 2017-09-19T01:30:00

Description

SQL injection vulnerability in books.php in the Book Panel (book_panel) module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the bookid parameter.