Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in Password Protect allows remote attackers to execute arbitrary SQL statements and bypass authentication via (1) admin or Pass parameter to index_next.asp, (2) LoginId, OPass, or NPass to CPassChangePassword.asp, (3) users_edit.asp, or (4) users_add.asp.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Password Protect SQL注入漏洞
Vulnerability Description
Password Protect存在SQL注入漏洞。远程攻击者借助(1)index_next.asp的admin 或者Pass参数,(2)CPassChangePassword.asp的LoginId,OPass,或者NPass CPassChangePassword.asp,(3) users_edit.asp,或者(4) users_add.asp执行任意SQL语句和绕过认证。
CVSS Information
N/A
Vulnerability Type
N/A