2 matches found
CVE-2006-6525
SQL injection vulnerability in vdateUsr.asp in EzHRS HR Assist 1.05 and earlier allows remote attackers to execute arbitrary SQL commands via the password parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2006-6525
CVE-2006-6525 affects EzHRS HR Assist 1.05 and earlier. The vulnerability is an SQL injection in vdateUsr.asp that allows remote attackers to execute arbitrary SQL commands via the password parameter. The connected documents confirm the existence of a remote, unauthenticated impact with potential...