CVE-2010-1090
CVE-2010-1090 describes a SQL injection in the PHP app phpMySite via the parameter action to index.php . The root cause is improper input handling allowing remote attackers to craft SQL commands; impact per sources is arbitrary SQL execution with partial confidentiality, integrity, and availabili...