Critical severity9.8NVD Advisory· Published Jun 19, 2018· Updated Jun 17, 2026
CVE-2015-4043
CVE-2015-4043
Description
SQL injection vulnerability in ConnX ESP HR Management 4.4.0 allows remote attackers to execute arbitrary SQL commands via the ctl00$cphMainContent$txtUserName parameter to frmLogin.aspx.
Affected products
1- Range: 4.4.0
Patches
Vulnerability mechanics
References
1- labs.asteriskinfosec.com.au/cve/ConnX_ESP_HR.pdfnvdThird Party Advisory
News mentions
0No linked articles in our index yet.