CVE-2010-4984 Information

Description

SQL injection vulnerability in notes.php in My Kazaam Notes Management System allows remote attackers to execute arbitrary SQL commands via vectors involving the \Enter Reference Number Below\ text box.

Reference

http://packetstormsecurity.org/1007-exploits/mykazaamnms-sqlxss.txt http://securityreason.com/securityalert/8494 http://www.exploit-db.com/exploits/14325 http://www.securityfocus.com/bid/41542 https://exchange.xforce.ibmcloud.com/vulnerabilities/60254