CVE-2003-0377 Information

Description

SQL injection vulnerability in the web-based administration interface for iisPROTECT 2.2-r4 and possibly earlier versions allows remote attackers to insert arbitrary SQL and execute code via certain variables as demonstrated using the GroupName variable in SiteAdmin.ASP.

Reference

http://marc.info/?l=bugtraq&m=105370528728225&w=2