CVE-2005-1834 Information

Description

SQL injection vulnerability in login.asp in NEXTWEB (i)Site allows remote attackers to execute arbitrary SQL commands and bypass authentication via the password field.

Reference

http://marc.info/?l=bugtraq&m=111764682925083&w=2 http://secunia.com/advisories/15560 http://securitytracker.com/id?1014085