CVE-2009-4436
Multiple SQL injection vulnerabilities in Active Web Softwares eWebquiz 8 allow remote attackers to execute arbitrary SQL commands via the QuizID parameter to 1 questions.asp, 2 importquestions.asp, and 3 quiztakers.asp, different vectors than CVE-2007-1706...