vendor:
Shader TV (Beta)
by:
U238 | Ugurcan Engin
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Shader TV (Beta)
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008
Shader TV (Beta) Multiple Remote SQL Injection Vulnerable
Administrator Login to creative web panel is vulnerable to SQL injection. Attackers can bypass the admin panel login by using username: 'or' 1=1 and password: 'or' 1=1.
Mitigation:
Input validation and sanitization should be done to prevent SQL injection attacks.
