[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
LDF Sql injection vulnerability
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: LDF Sql injection vulnerability
- From: arash.setayeshi@xxxxxxxxx
- Date: Fri, 23 Jan 2009 20:19:31 -0700
Product : LDF
vendor : www.ldf.22.cn
LDF Sql injection vulnerability (in login.asp page) =>
example :
http://example/[ldf path]/login.asp?user=[SQL COMMAND]