[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

eShopping SQL Injection

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: eShopping SQL Injection
From: Advisory@xxxxxxxxxxxxxxxxx
Date: 13 Nov 2006 23:56:17 -0000

#Aria-Security Team Advisory
#<www.Aria-security.Com For English >
#<www.Aria-Security.net For Persian >
#Original Advisory : http://aria-security.net/advisory/ecommercestore.txt
#-----------------------------------------------------------
#Software: E Commerce Store Shop Builder
#Method : SQL Injection
#
#PoC:
#http://target/path/fulldetails.asp?brand=&idcategory=&scata=&idProduct=[SQL 
INJECTION]
#http://target/path/categories.asp?id=[SQL INJECTION]
#
#Contact: Advisory@xxxxxxxxxxxxxxxxx

Prev by Date: Ustore SQL Injection
Next by Date: Advisory 14/2006: Dotdeb PHP Email Header Injection Vulnerability
Previous by thread: Ustore SQL Injection
Next by thread: Advisory 14/2006: Dotdeb PHP Email Header Injection Vulnerability
Index(es):
- Date
- Thread