CVE-2009-4689
SQL injection vulnerability in index.php in PHP Shopping Cart Selling Website Script allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Date published : 2010-03-10
http://packetstormsecurity.org/0907-exploits/scsc-sqlxss.txt