Multiple SQL injection vulnerabilities in Employee Timeclock Software 0.99 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to (a) auth.php or (b) login_action.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: flexera
Published: 2010-03-12T20:00:00
Updated: 2018-10-10T18:57:01
Reserved: 2010-01-04T00:00:00
Link: CVE-2010-0122
JSON object: View
NVD Information
Status : Modified
Published: 2010-03-15T13:28:25.620
Modified: 2018-10-10T19:51:06.633
Link: CVE-2010-0122
JSON object: View
Redhat Information
No data.
CWE