Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbMorning WoodEDB-ID:25839
HistoryJun 16, 2005 - 12:00 a.m.

Cool Cafe Chat 1.2.1 - 'login.asp' SQL Injection

2005-06-1600:00:00
Morning Wood
www.exploit-db.com
14

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/13976/info

Cool Cafe Chat is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'login.asp' script before using it in an SQL query.

Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.

Cool Cafe Chat 1.2.1 is reportedly vulnerable. 

The following proof of concept is available:
user: admin
password: 'or'

Related

cvelist 1
cve 1
nvd 1
cvelist
cvelist
CVE-2005-2035
2005-06-21 04:00:00
cve
cve
CVE-2005-2035
2005-06-21 04:00:00
nvd
nvd
CVE-2005-2035
2005-06-16 04:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:25839
cvelist1cve1nvd1