CVE-2009-1764
The CVE-2009-1764 issue is a SQL injection vulnerability in MaxCMS 2.0, specifically in inc/ajax.asp via the id parameter used by a digg action. The underlying flaw is improper handling of user input leading to arbitrary SQL execution on remote systems. Impact is partial confidentiality/integrity...