CVE-2009-2775
PHPArcadeScript (PHP Arcade Script) 4.0 is affected by an SQL injection in linkout.php via the id parameter. The root cause is insecure SQL handling in the affected script, enabling remote attackers to execute arbitrary SQL commands. CVSS v2 base score is 7.5 (HIGH) with network access, low attac...