CVE-2009-4947
The CVE-2009-4947 entry details a SQL injection in the web form FrmLoginPwdReminderPopup.aspx of Q2 Solutions ConnX 4.0.20080606, exploitable via the txtEmail parameter. The root cause is improper input handling leading to arbitrary SQL execution, with the impact described as remote arbitrary com...