10 lines
No EOL
596 B
Text
10 lines
No EOL
596 B
Text
source: https://www.securityfocus.com/bid/15400/info
|
|
|
|
ActiveCampaign 1-2-All Broadcast Email is prone to an SQL-injection vulnerability. This is an input-validation issue related to data that will be used in SQL queries, allowing a remote user to influence the structure and logic of a query.
|
|
|
|
Successful attacks could compromise the software. Depending on the database implementation and the nature of the affected query, the attacker may be able to gain unauthorized access to the database.
|
|
|
|
http://www.example.com/[12allTarget]/admin/index.php
|
|
|
|
Username: ' or 1=1 /*
|
|
Password: (Nothing)(Blank) |