# Title		: Facility Composer Website SQL Injection

# Description	: The Facility Composer Website at ff.cecer.army.mil/fc/
		  suffers from an SQL Injection vulnerability.

# Author	: Tosser

# E-mail	: ht7015@gmail.com

# Proof		: Go to
		  https://ff.cecer.army.mil/fc/login.jsp
		  and type something like ' or 'x'='x in the username and password fields.
		  This will grant you Administrator privileges on the system.