SQL Injection Vulnerability in Ecomm Professional Guestbook 3.x: Remote Code Execution via AdminPWD Parameter

SQL Injection Vulnerability in Ecomm Professional Guestbook 3.x: Remote Code Execution via AdminPWD Parameter

CVE-2005-1412 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in verify.asp for Ecomm Professional Guestbook 3.x allows remote attackers to execute arbitrary SQL commands via the AdminPWD parameter.

Learn more about our Web Application Penetration Testing UK.