CVE-2005-2784 Information

Description

SQL injection vulnerability in the login function for the administration login panel in cosmoshop 8.10.78 allows remote attackers to execute arbitrary SQL commands and bypass authentication via unspecified vectors.

Reference

http://marc.info/?l=bugtraq&m=112534390600093&w=2 http://secunia.com/advisories/16625/ http://www.securityfocus.com/bid/14689 https://exchange.xforce.ibmcloud.com/vulnerabilities/22079