CVE-2009-3501

SQL injection vulnerability in students.php in BPowerHouse BPStudents 1.0 allows remote attackers to execute arbitrary SQL commands via the test parameter in a preview action.

Date published : 2009-09-30

http://packetstormsecurity.org/0909-exploits/bpstudent-sql.txt

http://osvdb.org/58293