• info
• discussion
• exploit
• solution
• references

Liberum Help Desk 'forgotpass.asp' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example input is available:

http://www.example.com/[path]/forgotpass.asp
uid: ' or '1=1