SQL injection vulnerability in adminlogin.asp in XTREME ASP Photo Gallery 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
secunia.com/advisories/10659
securityreason.com/securityalert/3346
securitytracker.com/id?1008745
www.osvdb.org/3585
www.pensacolawebdesigns.com/xtremeasp/readmore.asp
www.securityfocus.com/archive/1/350028/30/21640/threaded
www.securityfocus.com/bid/9438
www.tripbit.org/advisories/TA-150104.txt
exchange.xforce.ibmcloud.com/vulnerabilities/14860