IP3 Networks IP3 NetAccess Appliance SQL Injection Vulnerability

2004-03-12T00:00:00
ID EDB-ID:23808
Type exploitdb
Reporter Syam Yanuar
Modified 2004-03-12T00:00:00

Description

IP3 Networks IP3 NetAccess Appliance SQL Injection Vulnerability. CVE-2004-2326. Remote exploit for hardware platform

                                        
                                            source: http://www.securityfocus.com/bid/9858/info

The IP3 NetAccess Appliance is reported prone to a remote SQL-injection vulnerability. This issue is due to the application's failure to properly sanitize user input. 

This issue may allow an attacker to gain full control of the appliance through the network-administration interface. The attacker may also be able to influence database queries to view or modify sensitive information, potentially compromising the system or the database.

https://www.example.com/ 
login : 'or''=' 
password : 'or''='