Description
SQL injection vulnerability in the login component in BestWebApp Dating Site allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) passwd parameters.
Affected products
References
- MISChttp://securityreason.com/securityalert/1898
- MISChttp://www.securityfocus.com/archive/1/488647/100/100/threaded
- VENDOR_ADVISORYhttp://secunia.com/advisories/23017
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/30394
- MISChttp://www.securityfocus.com/bid/21158
- MISChttp://www.securityfocus.com/archive/1/451963/100/0/threaded