Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

omnistar article manager [multiples injection sql]

From: saps.audit () gmail com
Date: 8 Nov 2006 22:46:44 -0000
vendor site:http://www.omnistararticle.com/
product :omnistar article manager
bug:injection sql
risk : high

path:
/articles/comments.php?article_id='[sql]
/articles/article.php?op=save&article_id='[sql]
/articles/pages.php?page_id='[sql]


laurent gaffié & benjamin mossé
http://s-a-p.ca/
contact: saps.audit () gmail com
Previous By Date Next
Previous By Thread Next

Current thread: