CVE-2009-0427
DMXReady Member Directory Manager 1.1 and earlier are affected by a SQL injection in CategoryManager/upload_image_category.asp (cid parameter), enabling remote attackers to execute arbitrary SQL commands. Affected component is the upload_image_category.asp endpoint within CategoryManager. The vul...