CVE-2007-0575 Information

Description

Multiple SQL injection vulnerabilities in the administrative login page (admin/login.asp) in ASPCode.net AdMentor allow remote attackers to execute arbitrary SQL commands via the (1) Userid and (2) Password fields.

Reference

http://forums.avenir-geopolitique.net/viewtopic.php?t=2606 http://securityreason.com/securityalert/2207 http://www.securityfocus.com/archive/1/458303/100/0/threaded http://www.securityfocus.com/archive/1/460632/100/100/threaded http://www.securityfocus.com/bid/22281 https://exchange.xforce.ibmcloud.com/vulnerabilities/31908