CVE-2009-3175
Model Agency Manager PRO (formerly Modeling Agency Content Management Script) has multiple SQL injection vulnerabilities. The flaws allow remote attackers to execute arbitrary SQL via the user_id parameter to view.php, photos.php, and motm.php, and via the id parameter to forum_message.php. Root ...