CVE-2008-6889

Publication date

2009-08-03 14:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in Merchantsadd.asp in ASPReferral 5.3 allows remote attackers to execute arbitrary SQL commands via the AccountID parameter.