CVE-2005-1221

Name of the Vulnerable Software and Affected Versions EcommPro version 3.0

Description The issue allows remote attackers to execute arbitrary SQL commands via the password field in the login.asp file. This can potentially lead to unauthorized access and data manipulation.

Recommendations For EcommPro version 3.0, consider validating and sanitizing user input in the password field to prevent SQL injection attacks. As a temporary workaround, restrict access to the login.asp file until a proper fix is applied.