CVE-2009-2164
CVE-2009-2164 describes SQL injection vulnerabilities in Kjtechforce Mailman beta1, exploitable when magic_quotes_gpc is disabled. The issues allow remote attackers to execute arbitrary SQL via (1) the code parameter in activate.php or (2) the dest parameter in index.php. Affected component is th...