5 matches found
CVE-2007-3992
SQL injection vulnerability in virlogin.asp in iExpress Property Pro allows remote attackers to execute arbitrary SQL commands via the Password parameter. NOTE: the Username parameter is covered by CVE-2006-6029. NOTE: the provenance of this information is unknown; the details are obtained solely...
Sql injection
SQL injection vulnerability in virlogin.asp in iExpress Property Pro allows remote attackers to execute arbitrary SQL commands via the Password parameter. NOTE: the Username parameter is covered by CVE-2006-6029. NOTE: the provenance of this information is unknown; the details are obtained solely...
CVE-2006-6029
SQL injection vulnerability in virLogin.asp in Property Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the UserName field...
CVE-2006-6029
CVE-2006-6029 is a SQL injection vulnerability in Property Pro 1.0, affecting vir_Login.asp via the UserName field. Remote attackers can potentially execute arbitrary SQL commands due to improper input handling. The vulnerability is documented across multiple sources (NVD, CVE lists) and is disti...
CVE-2006-6029
SQL injection vulnerability in virLogin.asp in Property Pro 1.0 allows remote attackers to execute arbitrary SQL commands via the UserName field...