CVE-2005-1786 Information

Description

SQL injection vulnerability in admin.asp in FunkyASP AD System 1.1 allows remote attackers to execute arbitrary SQL commands and gain privileges via the password parameter.

Reference

http://secunia.com/advisories/15494 http://securitytracker.com/id?1014056 http://www.funkyasp.co.uk/product.asp?prod=1&currency=USD http://www.under9round.com/funky-asp.txt