CVE-2009-3314

CVE-2009-3314 concerns an SQL injection vulnerability in ladders.php of Elite Gaming Ladders 3.2, exploitable via the platform parameter. The root cause is improper handling/validation of input used in SQL queries, enabling remote attackers to execute arbitrary SQL commands. Affected: Elite Gamin...