Vulnerabilities > VU > Case Manager

DATE CVE VULNERABILITY TITLE RISK
2007-11-29 CVE-2007-6168 SQL Injection vulnerability in VU Case Manager
SQL injection vulnerability in default.asp in VU Case Manager allows remote attackers to execute arbitrary SQL commands via the username parameter, a different vector than CVE-2007-6143.
network
low complexity
vu CWE-89
7.5
7.5
2007-11-27 CVE-2007-6143 SQL Injection vulnerability in VU Case Manager
SQL injection vulnerability in default.asp (aka the Login Page) in VU Case Manager allows remote attackers to execute arbitrary SQL commands via the password parameter.
network
low complexity
vu CWE-89
7.5
7.5