CVE-2009-2154 Information

Description

SQL injection vulnerability in admin/login.php in Impleo Music Collection 2.0 when magic_quotes_gpc is disabled allows remote attackers to execute arbitrary SQL commands via the username parameter.

Reference

https://www.exploit-db.com/exploits/8947