CVE-2009-2451
CVE-2009-2451 describes multiple SQL injection vulnerabilities in the MIM:InfiniX calendar/search functionality. The affected product is MIM:InfiniX 1.2.003 and possibly earlier versions. The root cause is improper handling of user-supplied input, enabling remote attackers to execute arbitrary SQ...