CVE-2011-4801

EIP tracks 1 public exploit for CVE-2011-4801. PoCs published by Jose Carlos de Arriba.

AI-analyzed exploit summary This is a security advisory detailing a time-based SQL injection vulnerability in Authenex A-Key/ASAS Web Management Control 3.1.0.2. The PoC demonstrates the vulnerability via a crafted POST request with a SQL injection payload.

SQL injection vulnerability in akeyActivationLogin.do in Authenex Web Management Control in Authenex Strong Authentication System (ASAS) Server 3.1.0.2 and 3.1.0.3 allows remote attackers to execute arbitrary SQL commands via the username parameter.