CVE-2009-3532

2009-10-02T19:30:00
ID CVE-2009-3532
Type cve
Reporter cve@mitre.org
Modified 2018-10-10T19:43:00

Description

Multiple SQL injection vulnerabilities in login.asp (aka the login screen) in LogRover 2.3 and 2.3.3 on Windows allow remote attackers to execute arbitrary SQL commands via the (1) uname and (2) pword parameters. NOTE: some of these details are obtained from third party information.