CVE-2008-5632

2008-12-17T12:30:00
ID CVE-2008-5632
Type cve
Reporter NVD
Modified 2017-09-28T21:32:42

Description

SQL injection vulnerability in Account.asp in Active Time Billing 3.2 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party information.