CVE-2009-2122
CVE-2009-2122 affects the WordPress Photoracer plugin 1.0, with a SQL injection in viewimg.php via the id parameter that allows remote execution of arbitrary SQL commands. Impact is partial confidentiality/integrity/availability per the CVSS. Public references show exploitation (e.g., Exploit-DB)...