CVE-2009-4667

Publication date

2010-03-05 18:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in form.php in WebMember 1.0 allows remote authenticated users to execute arbitrary SQL commands via the formID parameter.