Bugtraq mailing list archives
ASPintranet SQL Injection
From: Advisory () Aria-security net
Date: 15 Nov 2006 04:18:34 -0000
#Aria-Security Team Advisory #<www.Aria-security.Com For English > #<www.Aria-Security.net For Persian > #Original Advisory : http://aria-security.net/advisory/ecommercekit.txt #----------------------------------------------------------- #Software: UStore | E-Commerce Kit 2 #Vendor: http://www.sitesoutlet.com/ #Method : SQL Injection # #PoC: #http://target/[path]/viewDetails.asp?pid=[HERE] #http://target/[path]/viewDetails.asp?catalog.asp?sid=[HERE] # #Contact: Advisory () aria-security net
Current thread:
- ASPintranet SQL Injection Advisory (Nov 14)
- <Possible follow-ups>
- ASPintranet SQL Injection Advisory (Nov 16)