CVE-2010-1604

Publication date

2010-04-29 17:00:00

Family

mitre

State

PUBLISHED

Description

Multiple SQL injection vulnerabilities in admin_login.php in NCT Jobs Portal Script allow remote attackers to execute arbitrary SQL commands via the (1) user parameter (aka login field) and (2) passwd parameter (aka password field). NOTE: some of these details are obtained from third party information.