|
|
AdMentor Admin Login SQL Injection Vulnerability
Attackers can exploit this issue via a web client. Supplying the following to the administrative login page is sufficient to exploit this issue: UserID = 'or' '=' Password = 'or' '=' The following proof-of-concept code is available: |
|
Privacy Statement |