2 matches found
CVE-2009-2010
Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS FCMS 1.9 and earlier allow remote authenticated users to execute arbitrary SQL commands via the 1 thread parameter to messageboard.php, 2 member parameter to profile.php, 3 pid parameter to gallery/index.php, and the 4...
CVE-2009-2010
The CVE-2009-2010 entry concerns Haudenschilt Family Connections FCMS (version 1.9 and earlier). The vulnerability is a set of SQL injection flaws: remote authenticated users can trigger injections via (1) thread parameter in messageboard.php, (2) member parameter in profile.php, (3) pid paramete...