Date: 21 Nov 2006 19:33:44 -0000
From: [email protected]
To: [email protected]Subject: Link Exchange Lite [injection sql]
X-Virus-Scanned: antivirus-gw at tyumen.ru
vendor site: http://softacid.net/
product:Link Exchange Lite
bug: injection sql
risk : high
injection sql (post) :
/search.asp
post your sql query into the search engine field
injection sql (get):
/linkslist.asp?psearch='[sql]
laurent gaffiИ & benjamin mossИ
http://s-a-p.ca/
contact: [email protected]
