CVE-2009-4872

CVE-2009-4872 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in globepersonnel_login.asp in Logoshows BBS 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password fields.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.