CVE-2009-3968
CVE-2009-3968 describes multiple SQL injection vulnerabilities in ITechBids 8.0. The issues allow remote attackers to execute arbitrary SQL commands via (1) user_id in feedback.php, (2) cate_id in category.php, (3) id in news.php, and (4) productid in itechd.php. The note mentions that vectors in...