Computer Security

Security Advisory: eShopping SQL Injection
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Xtreme ASP Photo Gallery Cross Site Scripting And SQL Injection

  MetaCart e-Shop [multiples injection sql (get & post)]

  E-commerce Kit 1 PayPal Edition [ injection sql ]

  TorrentFlux 2.2 Arbitrary File Creation/Overwrite/De
letion & Command Execution Vulnerablities

From:Advisory_(at)_Aria-Security.net <Advisory_(at)_Aria-Security.net>
Date:16.11.2006
Subject:eShopping SQL Injection

#Aria-Security Team Advisory
#<www.Aria-security.Com For English >
#<www.Aria-Security.net For Persian >
#Original Advisory : http://aria-security.net/advisory/ecommercestore.txt
#-----------------------------------------------------------
#Software: E Commerce Store Shop Builder
#Method : SQL Injection
#
#PoC:
#http://target/path/fulldetails.
asp?brand=&idcategory=&scata=&idProduct=[SQL INJECTION]
#http://target/path/categories.asp?id=[SQL INJECTION]
#
#Contact: Advisory@aria-security.net
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru