CVE-2007-4208
The documents describe CVE-2007-4208 as a SQL injection vulnerability in default.asp of Next Gen Portfolio Manager. The issue allows remote attackers to manipulate the database by supplying crafted values in the ExecuteTheLogin action, specifically via the (1) Users_Email or (2) Users_Password pa...