12 matches found
CVE-2008-5627
SQL injection vulnerability in account.asp in Active Trade 2 allows remote attackers to execute arbitrary SQL commands via the 1 username parameter aka Email field or the 2 password parameter. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in account.asp in Active Photo Gallery 6.2 allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters...
Sql injection
SQL injection vulnerability in account.asp in Active Force Matrix 2.0 allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in account.asp in Active Membership 2.0 allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in Account.asp in Active Time Billing 3.2 allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party information...
CVE-2008-5632
SQL injection vulnerability in Account.asp in Active Time Billing 3.2 allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party information...
CVE-2008-5632
SQL injection vulnerability in Account.asp in Active Time Billing 3.2 allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party information...
CVE-2008-5641
SQL injection vulnerability in account.asp in Active Photo Gallery 6.2 allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters...
CVE-2008-5635
SQL injection vulnerability in account.asp in Active Membership 2.0 allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party information...
CVE-2008-5627
SQL injection vulnerability in account.asp in Active Trade 2 allows remote attackers to execute arbitrary SQL commands via the 1 username parameter aka Email field or the 2 password parameter. NOTE: some of these details are obtained from third party information...
CVE-2008-5634
SQL injection vulnerability in account.asp in Active Force Matrix 2.0 allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party information...
CVE-2004-2198
The CVE-2004-2198 entry relates to DUware DUclassmate 1.0–1.1, where an attacker can remotely change arbitrary user passwords by tampering with the MM_recordId parameter on the My Account page. The connected data also note related issues in DUware products (e.g., DUclassmate, DUclassified, DUforu...