2 matches found
CVE-2009-3319
SQL injection vulnerability in poems.php in DCI-Designs Dawaween 1.03 allows remote attackers to execute arbitrary SQL commands via the id parameter in a sec list action, a different vector than CVE-2006-1018...
CVE-2009-3319
The provided data documents CVE-2009-3319 as affecting the DCI-Designs Dawaween 1.03 package, specifically the poems.php module. The vulnerability is an SQL injection that allows remote attackers to execute arbitrary SQL commands via the id parameter in a sec list action (a vector distinct from C...