CVE-2009-1323
CVE-2009-1323 describes an SQL injection in Web File Explorer 3.1, where body.asp fails to sanitize the id parameter, allowing remote attackers to inject and execute arbitrary SQL commands. This is triggered via the id parameter in the request, enabling potential data disclosure or modification o...