Thephototool · Thephototool · CVE-2004-0236
**Name of the Vulnerable Software and Affected Versions**
thePHOTOtool (affected versions not specified)
**Description**
A SQL injection issue exists in the login.asp file of thePHOTOtool, allowing remote attackers to gain unauthorized access by exploiting the password field in the login process.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.