QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2008-5926

Back to search

CVE-2008-5926

Published: Jan 21, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple SQL injection vulnerabilities in login.asp in ASP-DEv Internal E-Mail System allow remote attackers to execute arbitrary SQL commands via the (1) login parameter (aka user field) or the (2) password parameter (aka pass field). NOTE: some of these details are obtained from third party information.

VendorProductVersions

n/a

n/a

affected
n/a

References

7447
exploit
x_refsource_EXPLOIT-DB
4925
third-party-advisory
x_refsource_SREASON
33103
third-party-advisory
x_refsource_SECUNIA
32808
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now