4 matches found
CVE-2006-4861
SQL injection vulnerability in loginprocess.asp in Mohammed Mehdi Panjwani Complain Center 1 allows remote attackers to execute arbitrary SQL commands via the 1 TxtUser aka Username and 2 TxtPass aka Password parameters in login.asp...
CVE-2006-4861
SQL injection vulnerability in loginprocess.asp in Mohammed Mehdi Panjwani Complain Center 1 allows remote attackers to execute arbitrary SQL commands via the 1 TxtUser aka Username and 2 TxtPass aka Password parameters in login.asp...
CVE-2006-4861
The CVE-2006-4861 entry describes a SQL injection vulnerability in loginprocess.asp of Mohammed Mehdi Panjwani Complain Center 1. The flaw allows remote attackers to execute arbitrary SQL via the TxtUser (Username) and TxtPass (Password) parameters in login.asp. The NVD metrics assign a base scor...
Complain Center v1(loginprocess.asp) Admin ByPASS SQL Injection
ENGLISH Title : Complain Center v1loginprocess.asp Admin ByPASS SQL Injection Author : ajann Exploit; CODE loginprocess.asp: .. ... dim varUser dim varPass varUser=Request.Form"TxtUser" No Secure : varPass=Request.Form"TxtPass" No Secure : .. ... //Before join login page...