CVE-2009-4351 | WSCreator 1.1 ADMIN/loginaction.php username) sql injection (EDB-10446 / XFDB-54791)
A vulnerability, which was classified as critical, was found in WSCreator 1.1. The affected element is an unknown function of the file ADMIN/loginaction.php. Such manipulation of the argument username) leads to sql injection.
This vulnerability is referenced as CVE-2009-4351. It is possible to launch the attack remotely. Furthermore, an exploit is available.