CVE-2009-3252

CVE-2009-3252 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in news.php in Rock Band CMS 0.10 allow remote attackers to execute arbitrary SQL commands via the (1) year and (2) id parameters.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.