Lucene search
K

4 matches found

CVE
CVE
added 2005/10/14 4:0 a.m.47 views

CVE-2005-3199

Affected: aradmin.asp component of aspReady FAQ. Description confirms multiple SQL injection vulnerabilities allowing remote attackers to execute arbitrary SQL via txtLogin and txtPassword. Root cause: unsafely constructed SQL queries in aradmin.asp susceptible to injection. Impact: potential una...

7.5CVSS8.8AI score0.01414EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2005/10/14 4:0 a.m.19 views

CVE-2005-3199

Multiple SQL injection vulnerabilities in aradmin.asp for aspReady FAQ allow remote attackers to execute arbitrary SQL commands, possibly via the 1 txtLogin and 2 txtPassword parameters...

8.4AI score0.01414EPSS
Exploits0References7
Packet Storm
Packet Storm
added 2005/10/07 12:0 a.m.27 views

aspReadySQL.txt

The free, open source project called "aspReady FAQ" is open for SQL-injection. This results is admin access with the ability change/delete the entire database. An example on SQL-inject that works could be: 1'or'1'='1 After doing a google search, I've found out that some companies are actually usi...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/10/07 12:0 a.m.32 views

aspReady FAQ - open for SQL-injections

The free, open source project called "aspReady FAQ" is open for SQL-injection. This results is admin access with the ability change/delete the entire database. An example on SQL-inject that works could be: 1'or'1'='1 After doing a google search, I've found out that some companies are actually usi...

7.2AI score
Exploits0
Rows per page
Query Builder