CVE-2010-2134

Multiple SQL injection vulnerabilities in login.php in Project Man 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter.
Configurations

Configuration 1 (hide)

cpe:2.3:a:http-solution:project_man:1.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-06-02 18:30

Updated : 2017-08-17 01:32


NVD link : CVE-2010-2134

Mitre link : CVE-2010-2134

CVE.ORG link : CVE-2010-2134


JSON object : View

Products Affected

http-solution

  • project_man
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')