Vulnerabilities > CVE-2004-1647 - Unspecified vulnerability in web Animations Password Protect
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN web-animations
exploit available
Summary
SQL injection vulnerability in Password Protect allows remote attackers to execute arbitrary SQL statements and bypass authentication via (1) admin or Pass parameter to index_next.asp, (2) LoginId, OPass, or NPass to CPassChangePassword.asp, (3) users_edit.asp, or (4) users_add.asp.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Web Animations Password Protect Multiple Input Validation Vulnerabilities. CVE-2004-1647 . Webapps exploit for asp platform |
id | EDB-ID:24420 |
last seen | 2016-02-02 |
modified | 2004-08-31 |
published | 2004-08-31 |
reporter | Criolabs |
source | https://www.exploit-db.com/download/24420/ |
title | Web Animations Password Protect Multiple Input Validation Vulnerabilities |