Naxtor E-directory is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries.
Successful exploitation results in gaining full administrative access within the context of the affected application.
A proof of concept is available:
User ID : admin
Password : 'or '='