CVE-2009-2385
CVE-2009-2385 affects Simple Machines Forum (SMF) — Member Awards component 1.0.2. The vulnerability lies in the awardsMembers function in Sources/Profile.php, where the id parameter in a profile action to index.php can be exploited to perform SQL injection and execute arbitrary SQL commands. Thi...