Unrated severityNVD Advisory· Published Mar 28, 2013· Updated Jun 16, 2026
CVE-2013-2690
CVE-2013-2690
Description
SQL injection vulnerability in index.php in Synchroweb Technology SynConnect 2.0 allows remote attackers to execute arbitrary SQL commands via the loginid parameter in a logoff action.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:synchroweb:synconnect:2.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:synchroweb:synconnect:2.0:*:*:*:*:*:*:*
- (no CPE)range: = 2.0
Patches
Vulnerability mechanics
References
7- archives.neohapsis.com/archives/bugtraq/2013-03/0134.htmlnvdExploit
- osvdb.org/ref/91/synconnect.txtnvdExploit
- packetstormsecurity.com/files/120958/SynConnect-SQL-Injection.htmlnvdExploit
- www.securityfocus.com/bid/58711nvdExploit
- osvdb.org/91693nvdVendor Advisory
- www.exploit-db.com/exploits/24898nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/83040nvd
News mentions
0No linked articles in our index yet.