2009-09-08 10:00:00
mitre
PUBLISHED
del_query1.php in Telephone Directory 2008 allows remote attackers to delete arbitrary contacts via a direct request with a modified id variable.