CVE-2008-0487 Information

Description

Multiple SQL injection vulnerabilities in login.asp in ASPired2Protect allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters. NOTE: some of these details are obtained from third party information.

Reference

http://secunia.com/advisories/28653 http://securityreason.com/securityalert/3598 http://www.securityfocus.com/archive/1/487137/100/0/threaded http://www.securityfocus.com/bid/27474 https://exchange.xforce.ibmcloud.com/vulnerabilities/39989