DMXReady Secure Login Manager Sent Parameter Multiple SQL Injection Vulnerabilities

DMXReady Secure Login Manager Sent Parameter Multiple SQL Injection Vulnerabilities

Attackers can exploit these issues via a browser.

The following example URIs are available:

http://www.example.com/login.asp?sent=[sql]
http://www.example.com/content.asp?mid=31&incid=17&sent=[sql]
http://www.example.com/members.asp??sent=[sql]
http://www.example.com//applications/SecureLoginManager/inc_secureloginmanager.asp?sent=[SQL]