CVE-2009-3501
CVE-2009-3501 describes an SQL injection in BPStudents 1.0 (BPowersHouse BPStudents) affecting the file students.php, exploited through the test parameter in a preview action. The underlying cause is improper handling of user input allowing arbitrary SQL execution, with potential partial impact o...