ZephyrSoft Toolbox Address Book Continued Multiple SQL Injection Vulnerabilities

ZephyrSoft Toolbox Address Book Continued is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries.

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.

ZephyrSoft Toolbox Address Book Continued versions 1.00 and 1.01 are confirmed vulnerable to these issues.


 

Privacy Statement
Copyright 2010, SecurityFocus