CVE-2010-4500
CVE-2010-4500 affects the MCGIGUY FreeTicket 1.0.0 application. When magic_quotes_gpc is disabled, remote attackers can trigger SQL injection via the sendmess action by supplying arbitrary values for the fields: name, email, subject, and message. The vulnerability arises from unsanitized inputs b...