2 matches found
CVE-2007-0582
SQL injection vulnerability in default.asp in ChernobiLe 1.0 allows remote attackers to execute arbitrary SQL commands via the User username field...
CVE-2007-0582
CVE-2007-0582 affects ChernobiLe 1.0; SQL injection via the User (username) field in default.asp allows remote execution of arbitrary SQL commands. Root cause is unsanitized input in the parameter, enabling query manipulation. The vulnerability has a CVSS v2 base score of 7.5 (HIGH) with network ...