CVE-2011-2944

SQL injection vulnerability in login.php in MegaLab The Uploader before 2.0.5 allows remote attackers to execute arbitrary SQL commands via the username parameter.

Date published : 2014-08-12

http://www.securityfocus.com/bid/52156

http://sourceforge.net/p/theuploader/news/2011/07/the-uploader-205-released