MOABI : Continuous Software Improvement

CVE-2009-4731
Description	SQL injection vulnerability in photos.php in Model Agency Manager PRO (formerly Modeling Agency Content Management Script) allows remote attackers to execute arbitrary SQL commands via the album parameter.
Impact	CVSS v2 : 7.5 HIGH
Type	CWE-89
Attack Vector	CVSSv2 Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P
Quick links	CVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google
References	http://packetstormsecurity.org/0907-exploits/articlepubpro-sql.txt http://secunia.com/advisories/36066 http://www.securityfocus.com/bid/35892 https://exchange.xforce.ibmcloud.com/vulnerabilities/52155