CVE-2009-3439
CVE-2009-3439 involves multiple SQL injection vulnerabilities in OSSIM prior to 2.1.2. Remote authenticated users can execute arbitrary SQL commands via parameters in several PHP scripts: repository_document.php, repository_links.php, repository_editdocument.php (repository/); policy/getpolicy.ph...