CVE-2004-2471

SQL injection vulnerability in the sloth TCL script in QuoteEngine before 1.2.0 allow remote attackers to execute arbitrary SQL commands via unknown vectors.

Date published : 2005-08-20

http://www.securityfocus.com/bid/10017

http://sourceforge.net/project/shownotes.php?release_id=227554