CVE-2004-2567
CVE-2004-2567 affects ReciPants 1.1.1 and describes multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands via the (1) user id, (2) recipe id, (3) category id, and (4) other ID number fields. This is supported by multiple sources (NVD and CVE records)...