CVE-2009-4872

2010-05-11T12:02:00
ID CVE-2009-4872
Type cve
Reporter cve@mitre.org
Modified 2017-09-19T01:30:00

Description

Multiple SQL injection vulnerabilities in globepersonnel_login.asp in Logoshows BBS 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password fields.