2 matches found
CVE-2007-6138
SQL injection vulnerability in redir.asp in VU Mass Mailer allows remote attackers to execute arbitrary SQL commands via the password parameter to Default.asp aka the Login Page. NOTE: some of these details are obtained from third party information...
CVE-2007-6138
CVE-2007-6138 affects VU Mass Mailer via the login flow: the redir.asp path is vulnerable to SQL injection in the password parameter to Default.asp (Login Page). The underlying cause is unsafely concatenated SQL in the login logic, enabling remote attackers to execute arbitrary SQL commands. Docu...