cpe:/a:prosmdr:prosmdr CVE-2009-2612 2009-07-27T14:30:00.327-04:00 2009-07-27T00:00:00.000-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-07-27T18:43:00.000-04:00 ALLOWS_OTHER_ACCESS SECUNIA 35614 SQL injection vulnerability in login.aspx in ProSMDR allows remote attackers to execute arbitrary SQL commands via the txtUser parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.