CVE-2004-0236 Information

Description

SQL injection vulnerability in login.asp in thePHOTOtool allows remote attackers to gain unauthorized access via the password field.

Reference

http://marc.info/?l=bugtraq&m=107576894019530&w=2 http://securitytracker.com/alerts/2004/Feb/1008906.html http://www.osvdb.org/6727 http://www.securityfocus.com/bid/9884 https://exchange.xforce.ibmcloud.com/vulnerabilities/15007