CVE-2005-3596 Information

Description

SQL injection vulnerability in ASPKnowledgebase allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username and (2) password fields in adminlogin.asp.

Reference

http://marc.info/?l=bugtraq&m=113156859811594&w=2 http://osvdb.org/20712 http://secunia.com/advisories/17517/ http://www.securityfocus.com/bid/15364/ http://www.vupen.com/english/advisories/2005/2375 https://exchange.xforce.ibmcloud.com/vulnerabilities/23038