Activewebsoftwares » Active Time Billing : Security Vulnerabilities, CVEs, (Sql injection)
SQL injection vulnerability in Account.asp in Active Time Billing 3.2 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters, possibly related to start.asp. NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
EPSS Score
0.10%
Published
2008-12-17
Updated
2017-09-29
1 vulnerabilities found