2 matches found
CVE-2008-5973
SQL injection vulnerability in login.aspx in Active Web Mail 4.0 allows remote attackers to execute arbitrary SQL commands via the password parameter...
CVE-2008-5973
The CVE-2008-5973 entry describes an SQL injection vulnerability in Active Web Mail 4.0 (login.aspx) that allows an attacker to execute arbitrary SQL commands via the password parameter. Affected component: login form handling in Active Web Mail 4.0. Root cause: improper sanitization of input lea...