VYPR

Cwguestbook

by Maxdev

CVEs (1)

  • CVE-2009-2307Jul 2, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the CWGuestBook module 2.1 and earlier for MAXdev MDPro (aka MD-Pro) allows remote attackers to execute arbitrary SQL commands via the rid parameter in a viewrecords action to modules.php.