RJ-iTop Network Vulnerability Scanner System Multiple SQL Injection Vulnerabilities
Category: Input Validation Error
Impact: SQL injection
========Multiple SQL Injection Vulnerabilities has been found in DRJ-iTop Network Vulnerability Scanner System，
which can be exploited by malicious users to conduct SQL injection and script insertion attacks.
Authentication is required to exploit these vulnerabilities.
========https://220.127.116.11/roleManager.jsp?type=query&id= [SQL Injection]
=======2009.10.19 Report to vendor (but vender did not respond)
2009.11.15 Report to vendor second times
2009.11.19 Report to CNNVD