10 lines
No EOL
437 B
Text
10 lines
No EOL
437 B
Text
source: http://www.securityfocus.com/bid/14469/info
|
|
|
|
Naxtor E-directory is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries.
|
|
|
|
Successful exploitation results in gaining full administrative access within the context of the affected application.
|
|
|
|
A proof of concept is available:
|
|
|
|
User ID : admin
|
|
Password : 'or '=' |