2009-12-07 17:00:00
mitre
PUBLISHED
Multiple SQL injection vulnerabilities in files/login.asp in JiRos Banner System eXperience (JBSX) allow remote attackers to execute arbitrary SQL commands via the (1) admin or (2) password field, a related issue to CVE-2007-6091. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.