2 matches found
CVE-2009-2123
Multiple SQL injection vulnerabilities in Elvin 1.2.0 allow remote attackers to execute arbitrary SQL commands via the 1 inUser aka Username and 2 inPass aka Password parameters to a inc/login.ei, reachable through login.php; and the 3 id parameter to b showbug.php and c showactivity.php. NOTE: i...
CVE-2009-2123
CVE-2009-2123 describes multiple SQL injection vulnerabilities in Elvin 1.2.0 allowing remote attackers to execute arbitrary SQL commands via (1) inUser (Username) and (2) inPass (Password) parameters to inc/login.ei (reachable through login.php); and (3) id parameter to show_bug.php and show_act...