Multiple SQL injection vulnerabilities in Active Web Softwares eWebquiz 8 allow remote malicious users to execute arbitrary SQL commands via the QuizID parameter to (1) questions.asp, (2) importquestions.asp, and (3) quiztakers.asp, different vectors than CVE-2007-1706.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
activewebsoftwares ewebquiz 8.0 |