CVE-2010-4186
CVE-2010-4186 describes a SQL injection vulnerability in process.asp of OnlineTechTools Online Work Order System (OWOS) Professional Edition 2.10, allowing remote attackers to execute arbitrary SQL commands via the password parameter. The vulnerability originates in the handling of the password i...