cpe:/a:david_noguera_gutierrez:dalogin:2.2 cpe:/a:david_noguera_gutierrez:dalogin:2.2.5 CVE-2010-5012 2011-11-02T17:55:01.700-04:00 2017-08-28T21:29:10.660-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2013-08-21T09:51:01.000-04:00 EXPLOIT-DB 13830 SECUNIA 40204 BID 40810 OSVDB 65471 SREASON 8509 XF dalogin-id-sql-injection(59390) MISC http://packetstormsecurity.org/1006-exploits/dalogin-sqlxssdisclose.txt SQL injection vulnerability in new.php in DaLogin 2.2 and 2.2.5 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information.