4 matches found
CVE-2010-0122
Multiple SQL injection vulnerabilities in Employee Timeclock Software 0.99 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 password parameter to a auth.php or b loginaction.php...
CVE-2010-0122
CVE-2010-0122 affects Employee Timeclock Software 0.99, where input passed to username and password parameters in auth.php and login_action.php is not properly sanitized, allowing remote SQL injection. This leads to arbitrary SQL execution and data manipulation as described in Secunia/NT referenc...
Secunia Research: Employee Timeclock Software SQL Injection Vulnerabilities
====================================================================== Secunia Research 10/03/2010 - Employee Timeclock Software SQL Injection Vulnerabilities - ====================================================================== Table of Contents Affected...
CVE-2010-0122
creationtimestamp| type| source ---|---|--- 2010-03-10 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39427...