RSS   Vulnerabilities for 'Internal e-mail system'   RSS

2009-01-21
 
CVE-2008-5926

CWE-89
 

 
Multiple SQL injection vulnerabilities in login.asp in ASP-DEv Internal E-Mail System allow remote attackers to execute arbitrary SQL commands via the (1) login parameter (aka user field) or the (2) password parameter (aka pass field). NOTE: some of these details are obtained from third party information.

 

 >>> Vendor: Asp-dev 6 Products
Xm forum
Asp resources forum
Xm events diary
Internal e-mail system
Xm forums
Xm diary


Copyright 2018, cxsecurity.com

 

Back to Top