CVE-2009-3436
CVE-2009-3436 concerns the MaxWebPortal ASP application. The vulnerability is a SQL injection in the forum.asp script accessible via the parameters FORUM_ID or CAT_ID , allowing remote attackers to execute arbitrary SQL commands. This mirrors related disclosures (e.g., CVE-2005-1417) and is corro...