CVE-2004-2326
IP3 Networks NetAccess Appliance <3.1.18b13 - SQL Injection
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2004-2326. PoCs published by Syam Yanuar.
AI-analyzed exploit summary The provided text describes a SQL injection vulnerability in the IP3 NetAccess Appliance, where unsanitized input in the login interface allows attackers to bypass authentication. The example payloads ('or''=') are generic SQLi strings, but no functional exploit code is included.
Description
SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was later reported to also affect firmware 4.0.34.
Exploits (1)
The provided text describes a SQL injection vulnerability in the IP3 NetAccess Appliance, where unsanitized input in the login interface allows attackers to bypass authentication. The example payloads ('or''=') are generic SQLi strings, but no functional exploit code is included.