Multiple SQL Injection Vulnerabilities in Redaxscript 'includes/password.php'
RedAxScript is a free content management system. Multiple SQL injection vulnerabilities exist in Redaxscript version 0.3.2 includes/password.php. A remote attacker can exploit this vulnerability to execute arbitrary SQL commands by passing the id or password parameter to the passwordreset program...