2002-05-03 04:00:00
mitre
PUBLISHED
admin.asp in AdMentor 2.11 allows remote attackers to bypass authentication and gain privileges via a SQL injection attack on the Login and Password arguments.