CVE-2009-0493

Name of the Vulnerable Software and Affected Versions IT!CMS versions 2.1a and earlier

Description The issue allows remote attackers to execute arbitrary SQL commands via the Username in the login.php file.

Recommendations For IT!CMS versions 2.1a and earlier, update to a version later than 2.1a to resolve the issue.