CVE-2009-2593
CVE-2009-2593 is a SQL injection in censura.php (Censura 1.16.04) allowing remote attackers to execute arbitrary SQL via the itemid parameter in the details action. The NVD entry notes an overall CVSSv2 base score of 7.5 (HIGH) with network attack vector, low attack complexity, and no authenticat...