CVE-2009-1952
CVE-2009-1952 concerns multiple SQL injection vulnerabilities in the administrative login feature of PropertyMax Pro FREE 0.3. The root cause is improper handling of user-supplied inputs in the login process when magic_quotes_gpc is disabled, enabling remote attackers to craft (username, password...