[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SiteXpress SQL Injection

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: SiteXpress SQL Injection
From: Advisory@xxxxxxxxxxxxxxxxx
Date: 13 Nov 2006 23:24:51 -0000

#Aria-Security Team Advisory 
#<www.Aria-security.Com For English >
#<www.Aria-Security.net For Persian >
#Original Advisory : http://aria-security.net/advisory/SiteXpress.txt
#-----------------------------------------------------------
#Software: SiteXpress E-Commerce System
#Method : SQL Injection
#
#PoC:
#http://target/[path]/
#http://target/[path]/dept.asp?id=[SQL]
#
#Contact: Advisory@xxxxxxxxxxxxxxxxx

Prev by Date: ASPintranet SQL Injection
Next by Date: WWWeb Cocepts SQL Injection
Previous by thread: ASPintranet SQL Injection
Next by thread: WWWeb Cocepts SQL Injection
Index(es):
- Date
- Thread