CVE-2015-6962 Information

Description

SQL injection vulnerability in the web application in Farol allows remote attackers to execute arbitrary SQL commands via the email parameter to tkmonitor/estrutura/login/Login.actions.php.

Reference

http://packetstormsecurity.com/files/133610/Farol-SQL-Injection.html https://www.exploit-db.com/exploits/38213/