Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:15056
HistoryNov 14, 2006 - 12:00 a.m.

SiteXpress SQL Injection

2006-11-1400:00:00
vulners.com
26

#Aria-Security Team Advisory
#<www.Aria-security.Com For English >
#<www.Aria-Security.net For Persian >
#Original Advisory : http://aria-security.net/advisory/SiteXpress.txt
#-----------------------------------------------------------
#Software: SiteXpress E-Commerce System
#Method : SQL Injection

#PoC:
#http://target/[path]/
#http://target/[path]/dept.asp?id=[SQL]

#Contact: [email protected]