CVE-2009-0401 Information

Description

SQL injection vulnerability in browsecats.php in E-Php CMS allows remote attackers to execute arbitrary SQL commands via the cid parameter.

Reference

http://packetstormsecurity.org/0901-exploits/ephpcmscid-sql.txt http://secunia.com/advisories/31923 http://www.securityfocus.com/bid/33470 https://exchange.xforce.ibmcloud.com/vulnerabilities/48297