2 matches found
CVE-2009-3255
SQL injection vulnerability in RASH Quote Management System RQMS 1.2.2 and earlier, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter in an admin action to the default URI...
CVE-2009-3255
Technical details about CVE-2009-3255 are not publicly available in the provided documents. Monitor for updates; the supplied materials do not reveal affected products/versions, root cause specifics, exploit information, or remediation guidance.