CVE-2010-1094
CVE-2010-1094 describes an SQL injection in News.php of DZ EROTIK Auktionshaus V4rgo, exploitable via the id parameter to execute arbitrary SQL commands remotely. The NVD entry provides CVSSv2 metrics: AV:N/AC:L/Au:N/C:P/I:P/A:P with a base score of 7.5 (HIGH). References include multiple advisor...