Multiple SQL injection vulnerabilities in aradmin.asp for aspReady FAQ allow remote attackers to execute arbitrary SQL commands, possibly via the (1) txtLogin and (2) txtPassword parameters.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Aspready_faq_manager | Aspready_faq_manager | * | * |
References
- http://marc.info/?l=bugtraq\u0026m=112861875408315\u0026w=2
- http://secunia.com/advisories/17091/
- http://securityreason.com/securityalert/52
- http://securitytracker.com/id?1015015
- http://www.osvdb.org/19917
- http://www.securityfocus.com/bid/15022
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22538
- http://marc.info/?l=bugtraq\u0026m=112861875408315\u0026w=2
- http://secunia.com/advisories/17091/
- http://securityreason.com/securityalert/52
- http://securitytracker.com/id?1015015
- http://www.osvdb.org/19917
- http://www.securityfocus.com/bid/15022
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22538