Damon Wood

1 exploit Active since Nov 2005
CVE-2005-3819 EXPLOITDB text WRITEUP
vtiger CRM < 4.2 - SQL Injection via HelpDesk user_name and date Parameters
Multiple SQL injection vulnerabilities in vTiger CRM 4.2 and earlier allow remote attackers to inject arbitrary SQL commands and bypass authentication via the (1) user_name and (2) date parameter in the HelpDesk module.