CVE-2008-6950 Information

Description

Multiple SQL injection vulnerabilities in login.asp in Bankoi WebHosting Control Panel 1.20 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password field.

Reference

http://www.securityfocus.com/bid/32299 https://exchange.xforce.ibmcloud.com/vulnerabilities/46637 https://www.exploit-db.com/exploits/7120