CVE-2013-2690

SQL injection vulnerability in index.php in Synchroweb Technology SynConnect 2.0 allows remote attackers to execute arbitrary SQL commands via the loginid parameter in a logoff action.

Date published : 2013-03-28

http://www.securityfocus.com/bid/58711

http://archives.neohapsis.com/archives/bugtraq/2013-03/0134.html