Vulnerabilities > Active WEB Softwares > Active Test > 2.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-01-23 | CVE-2008-5959 | SQL Injection vulnerability in Active web Softwares Active Test 2.1 Multiple SQL injection vulnerabilities in start.asp in Active Test 2.1 allow remote attackers to execute arbitrary SQL commands via the (1) useremail parameter (aka username field) or (2) password parameter (aka password field). | 7.5 |