[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Image gallery with Access Database SQL Injection

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Image gallery with Access Database SQL Injection
From: Advisory@xxxxxxxxxxxxxxxxx
Date: 16 Nov 2006 00:23:27 -0000

#Aria-Security Team Advisory
#<www.Aria-security.Com For English >
#<www.Aria-Security.net For Persian >
#Original Advisory : http://aria-security.net/advisory/igwad.txt
#-----------------------------------------------------------
#Software: Image gallery with Access Database 
#Method : SQL Injection 
#
#PoC:
#http://target/path/dispimage.asp?id=[SQL Injection]
#http://target/path/default.asp?page=2&order=[SQL Injection]
#http://target/path/default.asp?page=[SQL INJECTION]&order=id
#
#Contact: Advisory@xxxxxxxxxxxxxxxxx

Prev by Date: rPSA-2006-0211-1 libpng
Next by Date: My-BIC => 0.6.5 Remote File Include Vulnerability Exploit
Previous by thread: rPSA-2006-0211-1 libpng
Next by thread: My-BIC => 0.6.5 Remote File Include Vulnerability Exploit
Index(es):
- Date
- Thread