CVE-2014-3749 Information

Description

SQL injection vulnerability in Construtiva CIS Manager allows remote attackers to execute arbitrary SQL commands via the email parameter to autenticar/lembrarlogin.asp.

Reference

http://seclists.org/fulldisclosure/2014/May/73 http://www.securityfocus.com/archive/1/532155/100/0/threaded http://www.securityfocus.com/bid/67442