[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Lootan(kedor) Sql Injection vulnerability
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: Lootan(kedor) Sql Injection vulnerability
- From: arash.setayeshi@xxxxxxxxx
- Date: Fri, 23 Jan 2009 20:12:08 -0700
Product : Lootan System
vendor : www.kedor.cn
vulnerable versions : RC1 & prior
example :
http://example/ly/login.asp?username=[SQL Command]