2 matches found
CVE-2006-4861
SQL injection vulnerability in loginprocess.asp in Mohammed Mehdi Panjwani Complain Center 1 allows remote attackers to execute arbitrary SQL commands via the 1 TxtUser aka Username and 2 TxtPass aka Password parameters in login.asp...
CVE-2006-4861
The CVE-2006-4861 entry describes a SQL injection vulnerability in loginprocess.asp of Mohammed Mehdi Panjwani Complain Center 1. The flaw allows remote attackers to execute arbitrary SQL via the TxtUser (Username) and TxtPass (Password) parameters in login.asp. The NVD metrics assign a base scor...