CVE-2009-2122

Publication date

2009-06-19 17:32:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in viewimg.php in the Paolo Palmonari Photoracer plugin 1.0 for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.