Vulnerabilities

CVE-2013-2498

by Fred · 28/02/2014

SQL injection vulnerability in the login page in flexycms/modules/user/user_manager.php in SimpleHRM 2.3, 2.2, and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter to index.php/user/setLogin.

Date published : 2014-02-28

http://www.openwall.com/lists/oss-security/2013/04/17/1

http://osvdb.org/92538

Related

Tags: Cybersecurity Alert