CVE-2018-25424 - Exploits & Severity
Source: Feedly
Published:
<p>Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89)</p> <p>Gate Pass Management System 2.1 contains an SQL injection vulnerability in the login-exec.php endpoint. Unauthenticated attackers can inject SQL code through the login and password parameters via