CVE-2014-1466 Information

Description

SQL injection vulnerability in CSP MySQL User Manager 2.3 allows remote attackers to execute arbitrary SQL commands via the login field of the login page.

Reference

http://osvdb.org/101867 http://packetstormsecurity.com/files/124724/cspmysql-sql.txt http://secunia.com/advisories/56348 http://www.securityfocus.com/bid/64731 https://exchange.xforce.ibmcloud.com/vulnerabilities/90210