CVE-2009-1747
CVE-2009-1747 is a SQL injection vulnerability in the 26th Avenue bSpeak 1.10 application. The issue resides in index.php during a post action and can be triggered via the forumid parameter, allowing remote attackers to execute arbitrary SQL commands. The NVD entry lists a CVSSv2 base score of 7....