CVE-2005-1364
CVE-2005-1364 describes multiple SQL injection vulnerabilities in MetaBid Auctions that allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password fields in logIn.asp, or (3) intAuctionID parameter to item.asp. The initial and connected documents confirm a SQLi ...