CVE-2009-2142
CVE-2009-2142 affects Zip Store Chat (versions 4.0 and 5.0) via admin/index.asp. Multiple SQL injection vulnerabilities enable remote attackers to modify or query backend databases by supplying crafted values in the (1) login and (2) senha parameters. The CVE entry cites arbitrary SQL execution a...