CVE-2015-4043
CVE-2015-4043 describes a SQL injection in ConnX ESP HR Management 4.4.0. The vulnerability is exploitable remotely via the parameter ctl00$cphMainContent$txtUserName in frmLogin.aspx, allowing execution of arbitrary SQL commands. Affected component: the login page handling on ConnX ESP HR Manage...