CVE-2009-2423
SQL injection vulnerability in category.php in Ebay Clone 2009 allows remote attackers to execute arbitrary SQL commands via the cate_id parameter in a list action.
Date published : 2009-07-10
http://packetstorm.linuxsecurity.com/0907-exploits/ebayclone2009-sqlxss.txt