CVE-2009-4807

Name of the Vulnerable Software and Affected Versions Graugon PHP Article Publisher version 1.0

Description The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the c parameter to "index.php" and the id parameter to "view.php".

Recommendations For Graugon PHP Article Publisher version 1.0, consider validating and sanitizing user input for the c parameter in "index.php" and the id parameter in "view.php" to prevent SQL injection attacks. As a temporary workaround, restrict access to "index.php" and "view.php" to minimize the risk of exploitation.