CVE-2009-2276 Information

Description

SQL injection vulnerability in voteforus.php in the Vote For Us extension 1.0.1 and earlier for PunBB allows remote attackers to execute arbitrary SQL commands via the out parameter.

Reference

http://www.exploit-db.com/exploits/9058