SQL Injection Vulnerability in Member Management System 2.1: Remote Code Execution via ID Parameter

SQL Injection Vulnerability in Member Management System 2.1: Remote Code Execution via ID Parameter

CVE-2004-1843 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in Member Management System 2.1 allows remote attackers to execute arbitrary SQL via the ID parameter to (1) resend.asp or (2) news_view.asp.

Learn more about our Web Application Penetration Testing UK.