NuytsTech Security

CVE-2012-1026

by ·

Multiple SQL injection vulnerabilities in login2.php in XRay CMS 1.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameters.

Date published : 2012-02-07

http://www.securityfocus.com/bid/51870

http://archives.neohapsis.com/archives/bugtraq/2012-02/0068.html

Tags: