CVE-2005-4207 Information

Description

SQL injection vulnerability in BTGrup Admin WebController Script allows remote attackers to execute SQL commands via the (1) Username and (2) Password fields.

Reference

http://securityreason.com/securityalert/249 http://www.osvdb.org/21815 http://www.securityfocus.com/archive/1/419237/100/0/threaded http://www.securityfocus.com/bid/15819