2 matches found
Sql injection
SQL injection vulnerability in loginform.asp in Instant Softwares Dating Site allows remote attackers to execute arbitrary SQL commands via the Username parameter, a different vulnerability than CVE-2007-6671. NOTE: the provenance of this information is unknown; the details are obtained solely fr...
CVE-2007-6671
CVE-2007-6671 is a SQL injection vulnerability in the login_form.asp of the Instant Softwares Dating Site. The flaw allows remote attackers to execute arbitrary SQL commands through the Password parameter (the description notes it is a different product than CVE-2006-6021). Other connected source...