CVE-2005-1785 Information

Description

SQL injection vulnerability in ad/login.asp in ZonGG 1.2 allows remote attackers to execute arbitrary SQL commands via the password parameter.

Reference

http://secunia.com/advisories/15515 http://securitytracker.com/id?1014063 http://www.securityfocus.com/bid/13787 http://www.under9round.com/zongg.txt http://www.vupen.com/english/advisories/2005/0636