CVE-2009-2394
CVE-2009-2394 describes an SQL injection in cat.php of SMSPages 1.0 (Mr.Saphp Arabic Script Mobile 2.0). The vulnerability arises from unsafely handling the CatID parameter, allowing remote attackers to execute arbitrary SQL commands. Affected software is explicitly named as SMSPages 1.0 in Mr.Sa...