CVE-2009-3327
CVE-2009-3327 relates to multiple SQL injection flaws in WX-Guestbook 1.1.208. The vulnerabilities allow remote attackers to execute arbitrary SQL commands via (1) the QUERY parameter to search.php and (2) the USERNAME parameter to login.php. The issue is confirmed in multiple documents (NVD, CVE...