CVE-2005-3199

Multiple SQL injection vulnerabilities in aradmin.asp for aspReady FAQ allow remote attackers to execute arbitrary SQL commands, possibly via the 1 txtLogin and 2 txtPassword parameters...

CVE-2005-3199

Affected: aradmin.asp component of aspReady FAQ. Description confirms multiple SQL injection vulnerabilities allowing remote attackers to execute arbitrary SQL via txtLogin and txtPassword. Root cause: unsafely constructed SQL queries in aradmin.asp susceptible to injection. Impact: potential una...

aspReady FAQ - open for SQL-injections

The free, open source project called "aspReady FAQ" is open for SQL-injection. This results is admin access with the ability change/delete the entire database. An example on SQL-inject that works could be: 1'or'1'='1 After doing a google search, I've found out that some companies are actually usi...

aspReadySQL.txt

The free, open source project called "aspReady FAQ" is open for SQL-injection. This results is admin access with the ability change/delete the entire database. An example on SQL-inject that works could be: 1'or'1'='1 After doing a google search, I've found out that some companies are actually usi...