CVE-2009-4862
CVE-2009-4862 describes multiple SQL injection vulnerabilities in Alwasel 1.5. The affected functionality is the id parameter passed to two scripts, show.php and xml.php, which allows remote attackers to execute arbitrary SQL commands. The provided connected documents do not specify affected vers...