CVE-2009-2269 Information

Description

SQL injection vulnerability in Empire CMS 5.1 allows remote attackers to execute arbitrary SQL commands via the bid parameter to the default URI under e/tool/gbook/.

Reference

http://www.securityfocus.com/archive/1/504652/100/0/threaded