ID PACKETSTORM:47618 Type packetstorm Reporter peda Modified 2006-06-25T00:00:00
`HotPlugCMS doesn't check input field values, so logging in on /hotplugcms/administration/tblcontent
is very easy with
' OR 1=1 /*
and a SQL-inject will bypass the entire authentication process.
Typical, very simple SQL Injection.
All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please mail to firstname.lastname@example.org Vulners, 2018