SQL injection in Logon Page in MV's mConnect application, v02.001.00, allows an malicious user to use a non existing user with a generic password to connect to the application and get access to unauthorized information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mv mconnect 02.001.00 |
||
mv mconnect 2013.1.6.8 |