CVE-2009-2307
CVE-2009-2307 affects MAXdev MDPro (aka MD-Pro) CWGuestBook module 2.1 and earlier. The vulnerability is an SQL injection via the rid parameter in a viewrecords action to modules.php, enabling remote data manipulation as described in the CVE entry. Connected documents corroborate the vulnerabilit...