2 matches found
CVE-2008-5633
Actively exploitable SQL injection vulnerability in ActiveVotes 2.2, specifically via register.asp (parameters: username, password), enabling remote execution of arbitrary SQL. Root cause is improper input handling leading to query manipulation. Affected component: register.asp in ActiveVotes 2.2...
CVE-2008-5365
Summary: CVE-2008-5365 is a SQL injection vulnerability in VoteHistory.asp of ActiveWebSoftwares ActiveVotes 2.2. The issue arises from unsafely handling the AccountID parameter, enabling remote attackers to execute arbitrary SQL commands. This is documented across multiple sources (NVD, CVE reco...