2 matches found
CVE-2009-0297
SQL injection vulnerability in logincheck.asp in ClickAuction allows remote attackers to execute arbitrary SQL commands via the 1 txtEmail and 2 txtPassword parameters. NOTE: some of these details are obtained from third party information...
CVE-2009-0297
CVE-2009-0297 : SQL injection in ClickAuction’s login_check.asp via the parameters (1) txtEmail and (2) txtPassword. Cause: unsanitized input enables arbitrary SQL execution. Impact: partial data confidentiality/ integrity risk and potential data exposure. No remediation details are provided in t...