Search (keywords):  SOFT ARTICLES TIPS & TRICKS SECURITY LINKS NEWS MAN DOCUMENTATION

<< Previous INDEX Search src / Print Next >>

Date: 14 Nov 2006 19:17:08 -0000
From: [email protected]
To: [email protected]
Subject: CandyPress Store[ multiples injection sql ]
X-Virus-Scanned: antivirus-gw at tyumen.ru

vendor site:http://www.candypress.com/
product:CandyPress Store
bug:injection sql
risk:medium



injection sql (get) :

http://site.com/sa3.5.2.14/scripts/openPolicy.asp?policy='[sql]
http://site.com/sa3.5.2.14/scripts/prodList.asp?brand='[sql]


laurent gaffiИ & benjamin mossИ
http://s-a-p.ca/
contact: [email protected]

<< Previous INDEX Search src / Print Next >>

Партнёры:

Хостинг: