RSS   Vulnerabilities for 'Active test'   RSS

2009-01-23
 
CVE-2008-5959

CWE-89
 

 
Multiple SQL injection vulnerabilities in start.asp in Active Test 2.1 allow remote attackers to execute arbitrary SQL commands via the (1) useremail parameter (aka username field) or (2) password parameter (aka password field). NOTE: some of these details are obtained from third party information.

 

 >>> Vendor: Active web softwares 6 Products
Active auction house
Activebuyandsell
Active photo gallery
Active link engine
Active newsletter
Active test


Copyright 2024, cxsecurity.com

 

Back to Top