Vulnerabilities > Morgan IDS > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-08-08 | CVE-2007-4208 | SQL Injection vulnerability in Next Gen Portfolio Manager Default.ASP SQL injection vulnerability in default.asp in Next Gen Portfolio Manager allows remote attackers to execute arbitrary SQL commands via the (1) Users_Email or (2) Users_Password parameter in an ExecuteTheLogin action. | 7.5 |