CVE-2010-1092 Information

Description

Multiple SQL injection vulnerabilities in login.php in ScriptsFeed Business Directory Software allow remote attackers to execute arbitrary SQL commands via the (1) us and (2) ps parameters.

Reference

http://osvdb.org/62626 http://secunia.com/advisories/38771 http://www.exploit-db.com/exploits/11592 http://www.securityfocus.com/bid/38470 http://www.vupen.com/english/advisories/2010/0494 https://exchange.xforce.ibmcloud.com/vulnerabilities/56570