CVE-2009-0493
The CVE-2009-0493 entry describes a SQL injection in IT!CMS before or at 2.1a, affecting login.php via the Username parameter and allowing remote execution of arbitrary SQL. NVD lists a base score of 7.5 (HIGH) with network access, low attack complexity and no authentication required. The connect...