CVE-2007-6143
NONESQL injection vulnerability in default.asp (aka the Login Page) in VU Case Manager allows remote attackers to execute arbitrary SQL commands via the password parameter.
Published: 11/27/2007Updated: 4/9/2025
Description
SQL injection vulnerability in default.asp (aka the Login Page) in VU Case Manager allows remote attackers to execute arbitrary SQL commands via the password parameter.
AI AnalysisPowered by AI
Affected Products
vucase_manager
References
- http://aria-security.net/forum/showthread.php?t=448Exploit
- http://secunia.com/advisories/27779Vendor Advisory
- http://www.securityfocus.com/archive/1/484019/100/0/threaded
- http://www.securityfocus.com/bid/26523
- http://www.vupen.com/english/advisories/2007/3967
- http://aria-security.net/forum/showthread.php?t=448Exploit
- http://secunia.com/advisories/27779Vendor Advisory
- http://www.securityfocus.com/archive/1/484019/100/0/threaded
- http://www.securityfocus.com/bid/26523
- http://www.vupen.com/english/advisories/2007/3967