CVE-2009-2427 Information

Description

SQL injection vulnerability in co-profile.php in Jobbr 2.2.7 allows remote attackers to execute arbitrary SQL commands via the emp_id parameter.

Reference

http://packetstorm.linuxsecurity.com/0907-exploits/jobbr-sql.txt http://secunia.com/advisories/35722