3 matches found
CVE-2007-2626
SQL injection vulnerability in admin.php in SchoolBoard allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters. NOTE: CVE disputes this issue, because 'username' does not exist, and the password is not used in any queries...
CVE-2007-2626
CVE-2007-2626: SQL injection reported in the admin.php file of SchoolBoard, potentially via (1) username and (2) password parameters. The CVE description notes that the issue is disputed because the username parameter may not exist and the password is not used in any queries. Connected documents ...
CVE-2007-2626
SQL injection vulnerability in admin.php in SchoolBoard allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters. NOTE: CVE disputes this issue, because 'username' does not exist, and the password is not used in any queries...