2 matches found
CVE-2006-1541
SQL injection vulnerability in Default.asp in EzASPSite 2.0 RC3 and earlier allows remote attackers to execute arbitrary SQL commands and obtain the SHA1 hash of the admin password via the Scheme parameter...
CVE-2006-1541
SQL injection in EzASPSite 2.0 RC3 and earlier (Default.asp) allows remote attackers to run arbitrary SQL and obtain the admin password SHA1 hash via the Scheme parameter. Connected documents do not add further technical details or mitigations in this set; no exploit status provided.