2 matches found
CVE-2007-6168
SQL injection vulnerability in default.asp in VU Case Manager allows remote attackers to execute arbitrary SQL commands via the username parameter, a different vector than CVE-2007-6143. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
CVE-2007-6168
CVE-2007-6168 affects VU Case Manager: SQL injection in default.asp (Login Page) via the username parameter, enabling remote SQL execution. This is a different vector from CVE-2007-6143, which uses the password parameter. No remediation or exploit details are provided in the supplied documents.