https://www.exploit-db.com/exploits/22148
https://cxsecurity.com/issue/WLB-2007110023
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200312-458

phpPass是一款允许对网页进行访问保护的脚本，可以对页面设置用户名和密码。phpPass中的accesscontrol.php脚本没有充分过滤用户提交的输入，远程攻击者可以利用这个漏洞提交恶意SQL命令，绕过安全检查，未授权访问保护页面。由于accesscontrol.php脚本对输入没有进行充分检查，构建特殊的SQL注入accesscontrol.php脚本，可导致更改SQL逻辑，绕过保护而访问受限制资源。

source: http://www.securityfocus.com/bid/6594/info

A problem with phpPass may allow an attacker to launch a SQL injection attack.

The vulnerability exists in the accesscontrol.php script included with phpPass. Due to insufficient sanitization of user-supplied input, it is possible for a remote user to inject arbitrary SQL into the database used by a vulnerable site. This may allow an attacker to view pages that would normally be restricted.

http://[target]/protectedpage.php?uid='%20OR%20''='&pwd='%20OR%20''='

来源:SECTRACK
名称:1005948
链接:http://www.securitytracker.com/id?1005948
来源:BID
名称:6594
链接:http://www.securityfocus.com/bid/6594
来源:BUGTRAQ
名称:20030113phpPass(PHP)
链接:http://www.securityfocus.com/archive/1/archive/1/307224/30/26300/threaded
来源:SREASON
名称:3349
链接:http://securityreason.com/securityalert/3349
来源：NSFOCUS
名称：4226
链接：http://www.nsfocus.net/vulndb/4226