CVE-2009-2122 Information

Description

SQL injection vulnerability in viewimg.php in the Paolo Palmonari Photoracer plugin 1.0 for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.

Reference

http://secunia.com/advisories/35450 http://www.securityfocus.com/bid/35382 https://exchange.xforce.ibmcloud.com/vulnerabilities/51152 https://www.exploit-db.com/exploits/8961