CVE-2013-4945
CVE-2013-4945 affects BMC Service Desk Express (SDE) version 10.2.1.95, where multiple SQL injection flaws allow remote attackers to inject arbitrary SQL through cookies (ASPSESSIONIDASSRATTQ, TABLE_WIDGET_1, TABLE_WIDGET_2, browserDateTimeInfo, browserNumberInfo) or the UID parameter to login.as...