CVE-2009-0516 Information

Description

SQL injection vulnerability in the classified page (classified.php) in BusinessSpace 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.

Reference

http://secunia.com/advisories/33875 http://www.securityfocus.com/archive/1/500787/100/0/threaded http://www.securityfocus.com/bid/33692 https://exchange.xforce.ibmcloud.com/vulnerabilities/48606 https://www.exploit-db.com/exploits/8011