CVE-2009-2886 Information

Description

SQL injection vulnerability in bios.php in PHP Scripts Now President Bios allows remote attackers to execute arbitrary SQL commands via the rank parameter.

Reference

http://packetstormsecurity.org/0907-exploits/presidentbios-sqlxss.txt http://secunia.com/advisories/35935 https://exchange.xforce.ibmcloud.com/vulnerabilities/51870