IP3 Networks IP3 NetAccess Appliance - SQL Injection

EDB-ID:

23808




Platform:

Hardware

Date:

2004-03-12


source: https://www.securityfocus.com/bid/9858/info

The IP3 NetAccess Appliance is reported prone to a remote SQL-injection vulnerability. This issue is due to the application's failure to properly sanitize user input. 

This issue may allow an attacker to gain full control of the appliance through the network-administration interface. The attacker may also be able to influence database queries to view or modify sensitive information, potentially compromising the system or the database.

https://www.example.com/ 
login : 'or''=' 
password : 'or''='