2 matches found
CVE-2009-3642
Multiple SQL injection vulnerabilities in the Call Logging feature in FrontRange HEAT 8.01 allow remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters...
CVE-2009-3642
CVE-2009-3642 affects FrontRange HEAT 8.01, where multiple SQL injection flaws in the Call Logging feature allow remote attackers to execute arbitrary SQL commands via the username and password parameters. The issue originates from improper handling of user-supplied credentials in the Call Loggin...