CVE-2009-2603 Information

Description

Multiple SQL injection vulnerabilities in index.php in Escon SupportPortal Pro 3.0 allow remote attackers to execute arbitrary SQL commands via the (1) cat and (2) tid parameters.

Reference

http://secunia.com/advisories/35300 http://www.exploit-db.com/exploits/8840 https://exchange.xforce.ibmcloud.com/vulnerabilities/50874