CVE-2009-3533 Information

Description

SQL injection vulnerability in report.php in Meeting Room Booking System (MRBS) before 1.4.2 allows remote attackers to execute arbitrary SQL commands via the typematch parameter. NOTE: some of these details are obtained from third party information.

Reference

http://mrbs.sourceforge.net/view_text.php?section=NEWS&file=NEWS http://osvdb.org/55872 http://secunia.com/advisories/35469 https://exchange.xforce.ibmcloud.com/vulnerabilities/51772