CVE-2008-5958
CVE-2008-5958 documents multiple SQL injection vulnerabilities in Active Test 2.1 . The issue arises when user-supplied input is passed via the QuizID parameter to three endpoints: questions.asp , importquestions.asp , and quiztakers.asp . Remote attackers can potentially execute arbitrary SQL co...