CVE-2007-4119 Information

Description

Multiple SQL injection vulnerabilities in yonetici.asp in Berthanas Ziyaretci Defteri 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) user and (2) Pass fields.

Reference

http://secunia.com/advisories/26371 http://securityreason.com/securityalert/2943 http://www.securityfocus.com/archive/1/474930/100/0/threaded http://www.securityfocus.com/bid/25109 http://www.vupen.com/english/advisories/2007/2761 https://exchange.xforce.ibmcloud.com/vulnerabilities/35684