Multiple SQL injection vulnerabilities in start.asp in Active Test 2.1 allow remote malicious users to execute arbitrary SQL commands via the (1) useremail parameter (aka username field) or (2) password parameter (aka password field). NOTE: some of these details are obtained from third party information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
active web softwares active test 2.1 |