CVE-2010-2317
Multiple SQL injection vulnerabilities in WmsCms 2.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 search, 2 sbr, 3 pid, 4 sbl, and 5 FilePath parameters to default.asp; and the 6 sbr, 7 pr, and 8 psPrice parameters to printpage.asp...