CVE-2005-4207

Description

SQL injection vulnerability in BTGrup Admin WebController Script allows remote attackers to execute SQL commands via the (1) Username and (2) Password fields.

Affected products

• btgrup / admin_webcontroller_script

References

• MISChttp://securityreason.com/securityalert/249
• MISChttp://www.securityfocus.com/archive/1/419237/100/0/threaded
• MISChttp://www.osvdb.org/21815
• MISChttp://www.securityfocus.com/bid/15819