SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 allows remote malicious users to execute arbitrary SQL commands via the artID parameter.
atcom netvolution 2.5.6