- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 23851
- Проверка EDB
-
- Пройдено
- Автор
- MANUEL LOPEZ
- Тип уязвимости
- WEBAPPS
- Платформа
- ASP
- CVE
- cve-2004-1843
- Дата публикации
- 2004-03-20
Код:
source: https://www.securityfocus.com/bid/9931/info
It has been reported that Member Management System may be prone to a SQL injection vulnerability that may allow a remote attacker to inject malicious SQL syntax into database queries. The problem is reported to exist in the 'ID' parameter contained within the 'resend.asp' and 'news_view.asp' scripts.
Member Management System version 2.1 has been reported to be affected by this issue, however, other versions may be vulnerable as well.
http://www.example.com/news_view.asp?ID=[SQL query]- Источник
- www.exploit-db.com
