Vulnerabilities > Activewebsoftwares > Active Trade > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-12-17 | CVE-2008-5627 | SQL Injection vulnerability in Activewebsoftwares Active Trade 2.0 SQL injection vulnerability in account.asp in Active Trade 2 allows remote attackers to execute arbitrary SQL commands via the (1) username parameter (aka Email field) or the (2) password parameter. | 7.5 |