Unrated severityNVD Advisory· Published Jun 16, 2003· Updated Jun 16, 2026
CVE-2003-0377
CVE-2003-0377
Description
SQL injection vulnerability in the web-based administration interface for iisPROTECT 2.2-r4, and possibly earlier versions, allows remote attackers to insert arbitrary SQL and execute code via certain variables, as demonstrated using the GroupName variable in SiteAdmin.ASP.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:iisprotect:iisprotect:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:iisprotect:iisprotect:*:*:*:*:*:*:*:*range: <=2.2
- (no CPE)range: <= 2.2-r4
Patches
Vulnerability mechanics
References
1- marc.infonvdThird Party Advisory
News mentions
0No linked articles in our index yet.