SQL Injection Vulnerability in Login Page of NEXTWEB (i)Site Allows Remote Attackers to Bypass Authentication and Execute Arbitrary SQL Commands

SQL Injection Vulnerability in Login Page of NEXTWEB (i)Site Allows Remote Attackers to Bypass Authentication and Execute Arbitrary SQL Commands

CVE-2005-1834 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in login.asp in NEXTWEB (i)Site allows remote attackers to execute arbitrary SQL commands and bypass authentication via the password field.

Learn more about our Web App Pen Testing.