CVE-2009-0332
CVE-2009-0332 affects AV Book Library prior to 1.1, with multiple SQL injection flaws in components including admin/edit.php, admin/add.php, and lib/book_search.php. The root cause is unsanitized/unspecified parameters enabling remote attackers to execute arbitrary SQL commands. The CVE has a Hig...