CVE-2009-4218

2009-12-07T17:30:00
ID CVE-2009-4218
Type cve
Reporter cve@mitre.org
Modified 2017-08-17T01:31:00

Description

Multiple SQL injection vulnerabilities in files/login.asp in JiRo's Banner System eXperience (JBSX) allow remote attackers to execute arbitrary SQL commands via the (1) admin or (2) password field, a related issue to CVE-2007-6091. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.