CVE-2014-10020
CVE-2014-10020 describes an SQL injection in login.php of Simple e-document 1.31, exploitable by remote attackers via the username parameter. The affected component is the login routine; the underlying cause is improper input handling allowing arbitrary SQL execution. The NVD data assigns a CVSS ...