CVE-2004-2562 Information

Description

SQL injection vulnerability in jobedit.asp in Leigh Business Enterprises (LBE) Web Helpdesk before 4.0.0.81 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Reference

http://secunia.com/advisories/12123 http://www.lbehelpdesk.com/patch/web/history.txt http://www.osvdb.org/8181 http://www.securiteam.com/windowsntfocus/5QP0M0ADGI.html http://www.securityfocus.com/bid/10773 https://exchange.xforce.ibmcloud.com/vulnerabilities/16779