Multiple ActiveWebSoftwares Products Login Parameters SQL Injection Vulnerabilities

Bugtraq ID: 32533
Class: Input Validation Error
CVE: CVE-2008-5627
CVE-2008-5631
CVE-2008-5633
CVE-2008-5634
CVE-2008-5635
CVE-2008-5632
CVE-2008-5641
CVE-2008-5959
CVE-2008-5973
CVE-2008-5974
CVE-2008-6286
Remote: Yes
Local: No
Published: Nov 29 2008 12:00AM
Updated: Mar 10 2009 09:16PM
Credit: ((?3d D3v!L)), Cyber-Zone, OffensiveTrack
Vulnerable: Active Web Softwares eWebquiz 8
Active Web Softwares ActiveVotes 2.2
Active Web Softwares Active Websurvey 9.1
Active Web Softwares Active Web Mail 4
Active Web Softwares Active Web Helpdesk 2
Active Web Softwares Active Trade 2.0
Active Web Softwares Active Time Billing 3.2
Active Web Softwares Active Test 2.1
Active Web Softwares Active Price Comparison 4
Active Web Softwares Active Photo Gallery 6.2
Active Web Softwares Active Newsletter 4.3
Active Web Softwares Active Membership 2
Active Web Softwares Active Force Matrix 2
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus