CVE-2010-5008
CVE-2010-5008 describes a SQL injection affecting BrightSuite Groupware 5.4, exploitable via the ContactID parameter in pages/contact_list_mail_form.asp. The vulnerability allows remote attackers to execute arbitrary SQL commands, with potential impact on confidentiality, integrity, and availabil...