SQL injection vulnerability in main.php in Enterprise Heart Enterprise Connector 1.0.2 allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the loginid parameter, a different vulnerability than CVE-2005-3875.
Software | From | Fixed in |
---|---|---|
enterprise_heart / enterprise_connector | 1.0.2 | 1.0.2.x |