SQL Injection Vulnerability in AdMentor 2.11 Allows Remote Authentication Bypass and Privilege Escalation

SQL Injection Vulnerability in AdMentor 2.11 Allows Remote Authentication Bypass and Privilege Escalation

CVE-2002-0308 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

admin.asp in AdMentor 2.11 allows remote attackers to bypass authentication and gain privileges via a SQL injection attack on the Login and Password arguments.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.