CVE-2008-7049
N/A
N/A
Summary
Multiple SQL injection vulnerabilities in login.asp in NatterChat 1.1 and 1.12 allow remote attackers to execute arbitrary SQL commands via the (1) txtUsername parameter (aka Username) and (2) txtPassword parameter (aka Password) in a form generated by home.asp. NOTE: due to lack of details, it is not clear whether this is related to CVE-2004-2206.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/32385
- https://www.exploit-db.com/exploits/7175
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46748
- https://www.exploit-db.com/exploits/7172
References
- http://www.securityfocus.com/bid/32385
- https://www.exploit-db.com/exploits/7175
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46748
- https://www.exploit-db.com/exploits/7172
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.