2 matches found
CVE-2010-1654
Multiple SQL injection vulnerabilities in systemmemberlogin.php in Infocus Real Estate Enterprise Edition allow remote attackers to execute arbitrary SQL commands via the 1 username aka login and 2 password parameters. NOTE: some of these details are obtained from third party information...
CVE-2010-1654
CVE-2010-1654 describes multiple SQL injection vulnerabilities in Infocus Real Estate Enterprise Edition, specifically in system_member_login.php where the (1) username/login and (2) password parameters can be abused to execute arbitrary SQL. The entry notes that some details come from third-part...