Home Vendor Advisories Open Source Vul DB Dragon Internet Events Listing admin_login.asp Multiple Field SQL Injection

Wednesday, 03 December 2008

Main Menu Home About us Contact us Services Partners Downloads Online Services Remote Support Helpdesk Backup Reminders Partners We ensure the highest level of vendor support for our clients & have established alliances with the following vendors: Services Spotlight Disaster Recovery services Disaster recovery services from independent tape testing through to off-site backup loan servers, all designed to minimise the risks of system failure in a proven and cost effective manner. Read more...   Login Username Password Remember me Lost Password? Tech Zone Vendor Advisories Cisco Microsoft Open Source Vul DB Products Industry News

Dragon Internet Events Listing admin_login.asp Multiple Field SQL Injection Thursday, 16 November 2006 Events Listing contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the 'admin_login.asp' script not properly sanitizing user-supplied input to the 'username' and 'password' variables. This may allow an attacker to inject or manipulate SQL queries in the backend database. Read more...

This page was loaded in 0.052 seconds.